WEBVTT 00:04.062 --> 00:19.332 [SPEAKER_00]: As millions of travelers head to airport during the busy summer season, the transportation security administration, TSA, has issued a stronger warning about the risks of charging devices at public USG stations. 00:20.252 --> 00:27.217 [SPEAKER_00]: News.com has learned that the advisory comes amid renewed concerns about juice jacking in a newer, more advanced threat known as choice jacking. 00:28.120 --> 00:35.385 [SPEAKER_00]: The TSA urged airline passengers to avoid plugging phones or other devices directly into public USB ports, which are common in airports. 00:36.265 --> 00:40.208 [SPEAKER_00]: Instead, the agency advised travelers to carry their own charging solutions. 00:41.108 --> 00:44.591 [SPEAKER_00]: Bring your TSA compliant power brick or battery pack and plug in there. 00:45.431 --> 00:49.073 [SPEAKER_00]: When you're at an airport, do not plug your phone directly into a USB port. 00:49.414 --> 00:50.835 [SPEAKER_00]: The TSA said in a statement. 00:51.641 --> 00:56.305 [SPEAKER_00]: The warning highlights that public charging points could expose travelers to hidden cybersecurity risks. 00:57.186 --> 01:03.672 [SPEAKER_00]: Juice jacking is a form of cyber attack in which hackers exploit public USB ports to install spyware of malware on devices. 01:04.593 --> 01:13.721 [SPEAKER_00]: Once connected, a compromised charging station can transfer harmful software, potentially giving attackers access to personal files, stored data and even login credentials. 01:14.582 --> 01:19.745 [SPEAKER_00]: Public USB port should never be treated safe, set-out Rihanna's warm and open-up nor VPN. 01:20.645 --> 01:30.550 [SPEAKER_00]: The FBI and cybersecurity experts are previously warned that Jews jacking incidents, although difficult to track, are an ongoing concern in high traffic location such as airports and train stations. 01:31.455 --> 01:35.217 [SPEAKER_00]: A more recent threat, known as choice jagging, has raised new concerns. 01:36.118 --> 01:40.460 [SPEAKER_00]: According to Warman Hogan, this method is a dangerous evolution in public charging threats. 01:41.361 --> 01:48.044 [SPEAKER_00]: Instead of relying solely on hidden malware, attackers trick users with a prompt that encourages them to enable data transfer on their device. 01:48.945 --> 01:57.830 [SPEAKER_00]: With a single deceptive prompt, attackers can trick people into enabling data transfer, potentially exposing personal files and other sensitive data, Warman Hogan explained. 01:58.670 --> 02:07.159 [SPEAKER_00]: According to reports, attacks on Android phones exploit permissions for peripherals using Android's open accessory protocol for accessories such as mice or keyboards. 02:08.020 --> 02:17.149 [SPEAKER_00]: Attackers can then begin hijacking system input through ADB or Android debug bridge, which can simulate user input and change the USB mode to allow data transfer. 02:18.024 --> 02:24.330 [SPEAKER_00]: The attack then proceeds with a series of commands aimed at gaining complete control of the device and gaining key access for further control. 02:25.211 --> 02:29.034 [SPEAKER_00]: On the other hand, iOS differs slightly and offers users a bit more protection. 02:29.947 --> 02:36.792 [SPEAKER_00]: As the outlet Android Authority explains, a rig USB cable or charger can be used to trigger a connection event for a Bluetooth device. 02:37.652 --> 02:47.059 [SPEAKER_00]: Although it may appear as a regular Bluetooth-based audio accessory to your iPhone, it could act as the machinery to secretly allow data transfer and gain access to specific files and photos. 02:47.979 --> 02:51.642 [SPEAKER_00]: However, it cannot access the entire iOS system as it can on Android. 03:03.326 --> 03:05.509 [SPEAKER_01]: Knowledge, knowledge, unfilter.