The Nigerian Communications Commission (NCC) says it has identified two new methods fraudsters hack into mobile devices, specifically warning android phone users.
According to NCC Cyber Security Incident Response Team (NCC-CSIRT) mobile phone users who use public charging stations are likely to lose their valuable data and critical information.
NCC-CSIRT described the first attack as Juice Jacking, a cybertheft exploit through which unauthorised users or hackers gain access into consumers’ devices when charging mobile phones at public charging stations.
The other form of cyber attack is a Facebook for Android Friend Acceptance Vulnerability, which targets only Android Operating System.
These findings was contained in a just released CSIRT security advisory 0001 released on January 26, 2022.
NCC explained that with Juice Jacking, attackers have found a new way to gain unauthorised entry into unsuspecting mobile phone users’ devices when they charge their mobile phones at public charging stations.
“Many public spaces, restaurants, malls and even in the public trains do offer complementary services to their customers in a bid to enhance customer services, one of which is providing charging ports or sockets,” it said.
NCC further noted that an attacker can leverage this courtesy to load a payload in the charging station or on the cables they would leave plugged in at the stations