Linux and Tech News

2073 readers

2 users here now

This is where all the News about Linux and Linux adjacent things goes. We'll use some of the articles here for the show! You can watch or listen at:

You can also get involved at our forum here on Lemmy:

User Space Forum

Or just get the most recent episode of the show here:

The Show

founded 2 years ago

MODERATORS

leo@lemmy.linuxuserspace.show

iOS and Android juice jacking defenses have been trivial to bypass for years (arstechnica.com)

submitted 3 months ago by leo@lemmy.linuxuserspace.show to c/news@lemmy.linuxuserspace.show

2 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] tyler@programming.dev 4 points 3 months ago

🎶Someone didn’t read the article 🎶

The attacks then exploit various weaknesses in the OS that allow the charger to autonomously inject “input events” that can enter text or click buttons presented in screen prompts as if the user had done so directly into the phone. In all three, the charger eventually gains two conceptual channels to the phone: (1) an input one allowing it to spoof user consent and (2) a file access connection that can steal files.