What is Juice Jacking? How to Avoid the New Cyber Threat

By Alex Passett April 24, 2023

As Friday rounded the corner last week, our team’s Group Editorial Director mentioned how he’d recently purchased USB data blockers and how a cybersecurity threat called “juice jacking” has been turning heads. Normally, I may’ve cracked a small joke related to “juicers” at gyms (or I might’ve even made a juice-oriented pun, smoothie-wise), but upon hearing more I’m glad I reserved any witticisms, as this is quite the serious topic.




If you’ve yet to hear about juice jacking and the dangers therein, I encourage reading on.

When we travel – especially in airports and hotels – finding a free USB charging station can become a hurried game of I Spy in order to recharge your phone or other portable device(s).

Enter the cyber-theft tactic known as juice jacking. Cyber attackers know not just how handy USB charging ports are, but how abundantly they pop up. Unfortunately, these bad actors have figured out how to plant malware and monitoring software onto our devices via USB charging ports in airports, shopping centers, hotels, etc. According to the FCC, “criminals may have intentionally left cables plugged in at charging stations. There have even been reports of infected cables being given away as promotional gifts.” (The FBI has also expressed concern.)

This concept – juice jacking – was first coined by a cybersecurity analyst back in 2011, but now it’s made a pseudo-comeback, of sorts. (And a dangerous one, at that.)

So, what can be done? After all, while we’re on-the-go busy while traveling, discerning a fake charging setup from a real one hasn’t exactly been a top-of-mind topic we’ve been trained on. (Especially since these fake stands will actually charge your phone, all the while installing malware or siphoning sensitive data like account passwords and credit card information.)

“It’s right for the FBI to warn about this,” says Adrianus Warmenhoven, a cybersecurity advisor at NordVPN. “Up until very recently, a lot of security researchers thought this wasn’t all that feasible for attackers. Because, in order to carry out an attack this way, the criminal must physically alter a USB port.”

But now, it’s happening.

Tips that may help you avoid becoming a victim of this new juice jacking include:

  • Carry a portable battery charger or external battery brick of your own.
  • Bring along your trusted cables; AC, car chargers, USB and so on.
  • Use, as mentioned, a device called a USB data blocker.
  • Completely power off your device(s) before opting to plug into a kiosk.
  • Pick an available power outlet, instead.

When plugging a device into a port, a prompt will usually appear asking you to select either “Share Data” or “Charge Only” – as expected, experts point to the latter.

These safety measures aren’t the only go-tos, but they’re some of the best, based on the research available.


Edited by Greg Tavarez
Get stories like this delivered straight to your inbox. [Free eNews Subscription]
SHARE THIS ARTICLE

Navigating Tax and Compliance with SkySwitch at Annual Vectors Conference

SkySwitch, a BCM One company and premier white-label UCaaS platform provider, held its annual SkySwitch Vectors 2024 event this week. One session that took place specifically covered tax and compliance regulations and how partners and other resellers can proactively benefit.

Read More

Exploring Business SMS: A Chat About Trends and Growth Strategies at SkySwitch Vectors 2024

At SkySwitch Vectors 2024, a conference session titled "Explore Business SMS: Trends, Best Practices & Growth Strategies" was held so attendees could learn more about this critical area of business communications.

Read More

INTERNET TELEPHONY Announces Winners of the 2024 SD-WAN Product of the Year Award

INTERNET TELEPHONY's SD-WAN Product of the Year Award is bestowed upon companies that demonstrate the innovation, vision, and execution to deliver software-based networking tools driving the upward market trajectory.

Read More

San Francisco Giants Hit a Home Run with RingCentral Partnership

The San Francisco Giants recently named RingCentral as an enterprise cloud communications partner to transform the organization's business communications to elevate employee and fan engagement.

Read More

Comtech Completes Arizona's Shift to Next-Gen 911 for Improved Emergency Response

Comtech, in partnership with the Arizona Department of Administrations, or ADOA, successfully completed a statewide transition to Comtech's NG911 services.

Read More