Hacker News new | past | comments | ask | show | jobs | submit login

> Windows and Mac users are currently easy targets.

Not true, at least for iPhone / iPad users:

   - 1. Download Apple Configurator (free to anyone)
   - 2. Create new config profile
   - 3. Setup your device in "supervised" mode and apply said profile (the reason for this step is that the "best" config profile options are only available in supervised mode).
Config profile items of interest include, but may not be limited to:

   - "Allow USB accessories while device is locked"
   - "Allow pairing with non-configurator hosts"
   - "Allow putting into recovery mode from an unpaired device"



If the USB device is not permitted to enumerate when the device is locked, then the payload just fires when enumeration happens after unlock.

You either ban USB devices entirely or you make users approve on every connection with no white listing.




Consider applying for YC's W25 batch! Applications are open till Nov 12.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: