Tencent’s research unit has found a way to change the firmware of fast chargers, thereby overpowering the device connected thereto and eventually damaging it. They found about 18 models out of total 234 tested, which have no choice to update the firmware, which is that the only solution to avoid this attack called BadPower.
A New Technique to wreck Your Phone via Fast Charger
Researchers at Xuanwu Lab, the research wing of Tencent has discovered a replacement technique called BadPower. Where they claim to change the facility supply to a connected device via its fast charger and overpower to wreck it ultimately. A report on this attack was published last week, which explains the way to damage components wish to melt or maybe assail fire!
The BadPower method is capable of altering the voltage supplied to the charge receiving device. Fast chargers are equipped with a chip and firmware (chip software), to assist the charger communicate with an influence receiving device. If the receiving device is capable of taking the high power, it then pushed high voltages thereto. If not, it supplies standard 5V power thereto.
Researchers here can alter the firmware of fast chargers, thus ready to falsely communicate and push more voltage than the connected device can take. This is able to ultimately cause melting, burn, bend, or put the device at the fire.
Researchers warn that attackers could cash in of this system, thus users and more importantly, OEMs should remember of it.
This means the firmware of these vulnerable chargers can’t be updated since the OEM shipped with none such option. This leaves the users in danger. Researchers said that they had informed the concerned OEMs and also the Chinese National Vulnerabilities Database.