Hackers can use public USB chargers to steal personal data. Here’s what you need to know about ‘juice jacking’

Nov 26, 2019

Are public USB chargers a major convenience – or a major threat to data security?

Security experts advise you to stop using public USB chargers due to risk of data theft and malware. Image: REUTERS/Rodrigo Garrido

Our Impact

What's the World Economic Forum doing to accelerate action on Cybersecurity?

The Big Picture

Explore and monitor how The Digital Economy is affecting economies, industries and global issues

A hand holding a looking glass by a lake

Crowdsource Innovation

Get involved with our crowdsourced digital platform to deliver impact at scale

Stay up to date:

The Digital Economy

Charging your phone at public USB points like those in airports may put you at risk of ‘juice jacking’
Hackers can steal your data and passwords in public locations
The Los Angeles District Attorney has warned about USB charger scams

We all know the feeling of panic when your mobile phone is about to die when you're out and about – and the feeling of relief when you find a convenient place to give it a power boost.

But security experts are urging people to think twice before plugging in. “Juice jacking” – or using public USB connections to introduce malware to smartphones and other devices – is an increasingly popular ploy by cyber criminals.

Have you read?

Travellers are advised to stop charging their mobile phones and devices at public USB charging points like those found at airports and hotels because of the risk they present. The Los Angeles District Attorney recently issued a warning about fraud due to USB charger scams.

Discover

How is the Forum tackling global cybersecurity challenges?

The World Economic Forum's Centre for Cybersecurity at the forefront of addressing global cybersecurity challenges and making the digital world safer for everyone.

Our goal is to enable secure and resilient digital and technological advancements for both individuals and organizations. As an independent and impartial platform, the Centre brings together a diverse range of experts from public and private sectors. We focus on elevating cybersecurity as a key strategic priority and drive collaborative initiatives worldwide to respond effectively to the most pressing security threats in the digital realm.

Learn more about our impact:

Cybersecurity training: In collaboration with Salesforce, Fortinet and the Global Cyber Alliance, we are providing free training to the next generation of cybersecurity experts. To date, we have trained more than 122,000 people worldwide.
Cyber resilience: Working with more than 170 partners, our centre is playing a pivotal role in enhancing cyber resilience across multiple industries: oil and gas, electricity, manufacturing and aviation.

Want to know more about our centre’s impact or get involved? Contact us.

“A free charge could end up draining your bank account," Deputy District Attorney Luke Sisak warns, adding the malware has the ability to lock devices and share passwords with hackers.

Cyber sneaks

The vulnerability of USB chargers, combined with the rise in sophisticated malware targeting smartphones, is something security experts have warned against for some years. Back in 2016, the FBI issued a nationwide warning after one particular piece of hardware, KeySweeper, was used to steal keystrokes from nearby wireless keyboards.

USB cables left in charging points are particularly risky, drawing in people who may not be carrying their own cable.

Preventing malware and ransomware is the biggest cyber security challenge, followed by identifying vulnerabilities. Image: Statista

A recent report from security software firm BlackBerry highlighted the risks our mobile phone opens us up to. Hackers take advantage of the fact we tend to be more trusting of these devices than we are of desktop computers. The report cites espionage campaigns that have targeted Pakistan’s military and government through fake apps.

Have you been the victim of a malware infection on your mobile device. Image: Statista

Practice safe charging

There are a few steps you can take to keep your mobile phone or device charged and safe on the move – including investing in a USB condom. These small devices prevent cables from transferring data, and limit them to accessing the power source.

Other tips include making sure your device is fully charged before you go out, using standard plug power outlets rather than USB charging stations and using portable, personal chargers for emergencies.

Don't miss any update on this topic

Create a free account and access your personalized content collection with our latest publications and analyses.

License and Republishing

World Economic Forum articles may be republished in accordance with the Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International Public License, and in accordance with our Terms of Use.

The views expressed in this article are those of the author alone and not the World Economic Forum.