From a practical point of view, the introduction and diffusion of the standard USB-C has allowed us to make enormous progress regarding the transfer of data between one device and another: just think that version 3.1 allows you to reach a maximum transmission speed of up to 10 Gbit/s.
Recently, however, an alarm has been raised relating to the exploitation of this technology, due to the introduction on the market of a series of connection cables counterfeit and equipped with malicious monitoring systems. Thanks to the data collected following advanced industrial scans, in fact, it was possible to identify the presence of packages containing modified cables, i.e. with electronic components inside them which can put at risk not only the privacy but in general the safety of the users from all over the world.
The important discovery can be attributed to Jon Bruner, a Lumafield expert: by exploiting a modern and sophisticated CT scanning technology available to the company he works for, the researcher discovered that some of these USB cables, internally, presented aWi-Fi antenna well concealed and different microchip superimposed. The package allows whoever installed it in the cable to have access to the data of the victim who had the misfortune of buying and using it without his knowledge. Since the cable works absolutely perfectly, the user has no idea that anything is wrong, so he behaves as usual.
The installed kit allows cybercriminals to operate in three different waysthat is, recording all kinds of information typed on the electronic device, including passwords and pins, sending the data via Wi-Fi and, finally, completely taking control of the device remotely. As mentioned, what makes everything more insidious is the fact that the cable works perfectly, so a very long time can pass before the victim notices the problem and is able to trace its origin: add to this, furthermore, the fact that malicious functions can be temporarily deactivated remotely with a simple click, further complicating everything.
The first question that arises spontaneously is: “Is there a way to
protect yourself?”. The only option available to us for now is to purchase and use only original cables, i.e. those supplied directly by official manufacturers or marketed by certified resellers.