How charging your iPhone could let hackers empty your bank account
The innocuous task of charging your iPhone could see your all your logins and passwords stolen, and bank account emptied by cyber criminals.
It comes after the discovery of rogue iPhone cables designed to gain complete access to your computer while charging your iPhone.
Even worse, they have been designed to look identical to standard Apple Lighting charging cables, meaning you could have no idea your life savings are at risk.
The product, created by a hacker known as MG, was showcased at the Def Con cybersecurity convention in Las Vegas last week.
The so-called O.MG cable is made from an Apple USB Lighting cable fitted with a small Wi-Fi enabled implant.
"It looks like a legitimate cable and works just like one," MG said at the conference, reported Motherboard.
"Not even your computer will notice a difference – until I, as an attacker, wirelessly take control of the cable.
Once the product is plugged into the computer, a hacker using a nearby Wii-Fi network can wirelessly transmit malicious payloads on the computer.
From here the hacker could remotely lock the victim's computer to collect their username and password when they log back on.
MG also demonstrated the ability to open phishing sites on the user's screen – fake websites designed to harvest personal details of the victim.
"It's like being able to sit at the keyboard and mouse of the victim but without actually being there," he said.
The hacker said he spent 300 hours and close to $A6000 developing the product.
While Apple's cable was used for the example, he claims it can be implemented into any USB cable.
MG plans on making the cables from scratch and selling them online as a "legitimate security tool".
Apple recommends only using accessories certified by the company for the best protection.
"An Apple Lightning to USB cable has 'Designed by Apple in California' and either 'Assembled in China', 'Assembled in Vietnam', or 'Indústria Brasileira' on the cable about seven inches from the USB connector.," it's website explains. "You'll see a 12-digit serial number at the end of this text."
While Apple's advice to use certified products is sound, it's worth noting the hack showcased at the convention used an authentic iPhone cable meaning you could still be caught out.
© Nine Digital Pty Ltd 2019