Butchered Starbucks charger.
Added 2018-12-12 01:21:22 +0000 UTCSorry for the little dip in content output recently, I was in Glasgow for a week visiting friends, checking out the (lacklustre) Xmas lighting displays and looking for suitable Christmassy tat for disassembly on the channel.
While waiting at the airport for my flight back to the Isle of Man I saw this butchered socket in the Starbucks coffee shop. I plugged a load into the other socket to see if the supply had been completely shorted and it had.
https://www.youtube.com/watch?v=VsRwfDAP5As
It got me pondering the malicious things you could do with a public charge point like this. Especially if you could get hold of an old one and then modify it before swapping it in surreptitiously in a less visible part of the shop. (probably not a wise thing to do in an airport). Also noting that this would involve making live mains connections to a metal bodied plate unless the USB section is a pluggable module.
A little investigation reveals that some phones that allow the connection of a keyboard to their charge port can be compromised with a rubber ducky attack, where a device emulates a keyboard so it gets instant access without warning and then executes a string of codes as if they're being typed manually.
The other particularly evil thought that came to mind would be to derive a charge current via resistors and a diode from the mains side and use it to charge up a beefy capacitor connected across the USB socket like a particularly capable USB killer.
Maybe it's a good idea just to use a power bank to charge your phone in public areas.
Should I release this video for general viewing on YouTube?
Comments
Also...some people outside my circle do not believe they have anything of risk on their "equipment" and if compromised they can "factory reset" their equipment which is fine but these little "bombs" once introduced to your system are sometime or most times on a timer countdown so when near any of your other equipment, transfer can occur.
2018-12-14 13:46:45 +0000 UTCWhen you plug your phone into your computer with the charging cord, you can download photos from your phone to your computer. If a port is compromised, there's no limit to what information a hacker could take.You can also buy USB cords that don't have wires to transmit data and prevent anyone highjacking your phone's information.it's best to just rely on your own charger. If your desperate and need to upload your selfie, take your chances."
2018-12-14 13:36:03 +0000 UTCShort D+ and D- at the Android end, then it'll see it as a charger an pull an amp.
2018-12-14 06:57:48 +0000 UTCOh dear, poor Starbucks. Is this how they justify $5 for a cup of coffee?
Gadgetman
2018-12-14 00:38:54 +0000 UTCThe IT departments must really have their work cut out for them these days with trying to stop lesser mortals exposing the systems to ransomware and other malware.
Big Clive
2018-12-13 04:38:10 +0000 UTCThe most interesting thing is the input voltage range. It suggests a switchmode power supply and perhaps a MOSFET instead of a triac for the iron. I've just ordered one from eBay to look at.
Big Clive
2018-12-13 04:36:32 +0000 UTCThat happens anyway. McDonalds has wireless charging pads and little adaptors that contain the pickup coil and a selection of connectors for phones without a pickup coil. Many of them have had the wires torn out of them.
Big Clive
2018-12-13 04:35:22 +0000 UTC$DAYJOB tends to tell us things like this are a big no-no to use on any work hardware for other reasons unless you're using a usb condom (and $DAYJOB-1 said the same thing, but with more hints about being shown the door if you forgot the order). Frying work hardware through the USB port ain't great, but plugging work hardware into random data lines could be catastrophic for far more nefarious reasons...
Mark Dennehy
2018-12-12 23:19:10 +0000 UTCThis is off topic but I bought a Yotec 967 soldering station from Banggood for $25. I couldn't resist at that price. Can you please get one and do a tear down? I have the same Yihua as you and love it. I opened it up before plugging it in and it appears to be grounded. They even added an Australia to US adapter.
2018-12-12 23:00:56 +0000 UTCMany Android phones can be taken over with set of vulnerabilities dubbed "ATtention Spanned". LG still haven't patched my phone. A simple defence is to use a usb cable with the data lines disconnected.
2018-12-12 21:44:27 +0000 UTCVideo should be okay for general viewing, I suppose. You don't give people any bad ideas in this video :)
Paul Schuur
2018-12-12 19:56:05 +0000 UTCNot a regular at such venues but I'll bear in mind the points raised about being careful @ public charge points... I don't think it's worth publishing; might get people thinking along those lines "Let's go and mash some USB sockets for fun"... :-/
Stephen Eyles
2018-12-12 19:27:03 +0000 UTCThere are things you can exploit and “Bad USB” was something they were playing around with a few years ago where an infected USB device could write code to the firmware of a PC. It was only proof of concept as far as I remember but USB is inherently insecure as all devices are trusted equally. I use a USB “condom” which allows charging but no data to pass to my phone. I use it so I can charge from works laptops where I don’t particularly want them to access my personal photos.
2018-12-12 15:36:26 +0000 UTCThe fun you could have with a USB socket that holds a 240v (or higher) charge on a capacitor :D
Phil Collins
2018-12-12 15:25:20 +0000 UTCSeems a bit cheap-arse to leave it like that with the amount of money Starbucks must rake in.
Matt Tester
2018-12-12 13:20:19 +0000 UTC"Someone" broke it whilst trying to take it apart. Sure, let's go with that.
evilution
2018-12-12 12:36:15 +0000 UTCIt would have been geekier if I'd had a set of screwdrivers. But having just come through airport security there was no chance of that.
Big Clive
2018-12-12 12:27:59 +0000 UTCYou could do both with the same device when you are capable in programming.
Leon Schutte
2018-12-12 10:22:10 +0000 UTCI think the malduino is a bit cheaper than the rubber ducky but the effect is the same. When i charge something i only use my own charger. There are charging cables without data connections but you charge very slow using them.
Leon Schutte
2018-12-12 10:18:55 +0000 UTCInstead of a keyboard protocol, they could emulate an USB host and do the data attack via ADB, a serial debug protocol basically all android phones support. Problem is however that in order to let that work, people have to enable debugging on their phone. Only a very vew idiots would do that.
L3P3
2018-12-12 09:36:30 +0000 UTCThe only thing you have to apologize for is... wait you are good. No problems.
Michael Thompson
2018-12-12 08:37:19 +0000 UTCGiven how well made and easy to install some of the pin-code skimmers are, i would not be surprised if such fake, data stealing usb sockets already exist.
Willem Hengeveld
2018-12-12 08:11:35 +0000 UTCI remember seeing an episode of a police drama (I think it was a CSI or something like that) which was about a compromised charging point at an airport.
2018-12-12 07:16:11 +0000 UTCThis is why I will only charge power banks from public USB sockets. I know I could rig up a USB compromise attached to a power bank in a normal enclosure I could just glue into place, heck you could probably piggy back off the free WiFi to get the data back.
Charleso
2018-12-12 05:34:59 +0000 UTCThey probably get beat up a lot so they are probably constantly swapping them out. That might explain some some of that wear on the screw heads.
Lostngone
2018-12-12 05:24:55 +0000 UTCI don't think there's enough electronics geekery in there TBH
Moz in Oz
2018-12-12 04:46:43 +0000 UTCProbably just generic vandalism. Seems ok to post.
Nani Isobel
2018-12-12 03:25:49 +0000 UTCJust use the short charging leads comes with various power bank, they are also don't have the data pins connected
Nguyen Quang Minh
2018-12-12 02:40:25 +0000 UTC
