While Apple is focused on iPhone security, there are some industry-grade tools that can be used to crack iOS devices and retrieve password-protected user data. However, security researchers have developed a malicious Lightning cable that can be used to record everything you type on your iPhone and send it remotely to hackers.
Oh, God! You can now steal passwords with a USB cable
Yes, you are reading that right! A standard lightning cable called the OMG cable was developed by a security researcher named MG. Researchers basically created an OMG cable by mounting a small custom-made chip inside the lightning cable. According to MG, malicious implants are about half the length of a plastic shell.
Researchers recently gave some interesting information about his product Deputy.. MG previously exhibited earlier versions of OMG cables for motherboards at the DEFCON hacking conference. However, in the latest report, MG showed a variety of new versions of the cable, including the Lightning to USB-C model and improved wireless capabilities.
“Some people have said that Type C cables are safe from this type of implant because there isn’t enough space, so obviously I had to prove that it was wrong. “ MG said Deputy In the statement.
How does this cable work?
Now, when OMG cables work, they basically create a Wi-Fi hotspot where hackers can connect their devices. If the connection is successful, the hacker can use a simple web interface to get the user’s keystrokes to charge the device using one of these cables.
So when the user connects the iPhone to the OMG cable and charges it, the cable will start sending keyboard data to the hacker wirelessly. The user may go unnoticed and enter bank details such as passwords, credit or debit card CVVs, or other sensitive information on the device while charging the device, but hackers may enter the connected device. You can get the above data.
In addition, the new OMG cable has geo-fence capability. This allows users or hackers to block the device payload based on their physical location. This prevents data from being leaked or in the hands of malicious individuals. “If the OMG cable goes out of engagement and you don’t want the payload to leak or accidentally run against a random computer, it’s a good pair with the self-destruct feature.” MG has been added further.
Well, if you think OMG cables are dangerous, know it MG mass-produces these malicious cables It’s much scarier. Apple recommends using MFi certified accessories for iPhones and other Apple devices, but there is a large market for non-certified third-party accessories. So, as you can imagine, this can affect multiple users who prefer accessories that are not certified to the iPhone.
Therefore, we recommend that you do not use these USB cables if you use a product other than MFi to charge your iPhone or transfer data. To protect your data and keep your device safe, you can check the MFi mark on the accessory box before you buy the accessory.
Featured image courtesy of: Deputy