The next time your phone battery is getting low in public and you need to give it a boost, think twice about using that charging station—it could lead to a serious breach of security. This is due to a scam known as juice jacking, which has become an increasing concern over the last few years. It’s for a good reason too, as this cyberattack means potentially losing control over your device or becoming a victim of identity theft. Want to know how to stay safe from juice jacking? Keep reading to learn how to protect yourself.

What is the juice jacking scam?

While phishing or evil twin Wifi scams rely on the victim providing their information, juice jacking works differently—scammers take a more proactive approach to gain access to your entire device.

“Juice jacking allows hackers to install malware or steal data by modifying the USB hardware behind charging stations,” says Internet security expert Eric Plam, chief revenue officer at SIMO. “Once plugged in, your phone might silently authorize a data connection, which gives attackers access to personal info, photos, credentials or even remote control.”

The phrase juice jacking may sound strange, but it’s used to describe what happens in the scam, according to McAfee. In other words, those who are “juicing up” their phone, laptop or tablet become the targets of technological “hijacking.”

But what makes the scam so worrisome is that people often don’t know they’ve been a victim until long after their data has been compromised.

Life

Got an Apple Account Security Alert Text? Here’s What You Should Know

If you use an Apple device, it can certainly raise a red flag when you get a message telling you there’s an issue with your account. You may be worried that someone has hacked you or even spent your money on the Apple website without your knowledge. That is often the case with the Apple […]

How does juice jacking work?

This serious cyberattack relies on people who need to get their devices charged while in a public place, but aren’t aware that they’re putting themselves at risk.

“Public USB ports, like those found at airports, hotel lobbies or transit stations, might seem like a traveler’s best friend but in reality, they could be a backdoor into your device,” warns Plam.

As mentioned above, the scammers modify the USB cable or port on these shared charging stations to allow them to carry out this attack. Once someone connects their device, the criminals will usually do one of three things:

• Steal information via unauthorized access, such as passwords or banking information
• Install malware (malicious software), which allows the hacker to track online activities or gain control over the device
• Launch a firmware attack, which can destroy a device’s security measures

Any of these routes could lead to identity theft, financial loss, breached accounts and more. Depending on the severity of the juice jacking, it may even leave your device completely useless if it falls under the hacker’s control.

Warning signs of potential juice jacking

Since juice jacking is meant to be sneaky, scammers want to make it as hard as possible to detect. However, there are some red flags that may indicate a public USB port is dangerous.

The first? “A sudden pop-up asking you to ‘share data,’ ‘trust this computer’ or similar prompts when all you wanted to do was charge,” explains Plam.

You may also notice your phone behaving oddly after using the public port. This could include overheating, slow processing or a fast-draining battery.

It’s important to keep in mind that certain locations pose a higher risk.

“It’s most likely to occur in high-traffic public spots: airports, train stations, convention centers or hotels,” adds Plam. “These places have lots of travelers in a hurry and create prime conditions for attackers to exploit.”

What to do if you’ve been targeted

If you believe that you’ve been a victim of a juice jacking attack, you’ll want to act as quickly as possible. Start by immediately disconnecting your device if you’re still using the suspicious port, he suggests.

Next, run an antivirus or security scan using trusted and reputable software. It’s also a good idea to change any passwords for more high-risk accounts like email, banking and social media.

Finally, monitor your financial statements and accounts for any unusual activity. Report anything that seems concerning to your bank, credit reporting bureau or even local law enforcement.

If the attack was severe, you may need to back up your data and do a full device reset. Consider contacting a cybersecurity professional for guidance if needed.

Life

Got a FedEx Text About Rescheduling Delivery? Don’t Click!

When you’re expecting a package, it can be frustrating to experience issues with delivery. Naturally, a text message telling you your package couldn’t be dropped off at your residence is sure to catch your eye. That’s the goal of bad actors trying to lure in people who aren’t aware that they’re being phished. Now, officials […]

How to stay safe from juice jacking scams

Juice jacking can be scary, but there are ways to avoid it.

Here’s what Plam suggests:

• Use a personal AC charger or portable power bank—no data risk.
• Use charge-only cables or USB data blockers to block data lines.
• Always decline data access prompts if a public device asks.
• Avoid unknown or suspicious charging stations, especially in high-risk environments like airports or public transit hubs.
• Keep OS and firmware updated; iOS 18.4 and Android 15 include stronger protections, though some devices might still be vulnerable.
• If you plug your device into a USB port and see a message like “share data” or “trust this computer” or “charge only,” always choose “charge only.”

By exercising caution when you need to charge your phone in a public place, you can ensure you—and your device—stay safe and protected.