News has emerged from US-CERT that a USB battery charger (specifically the Energizer DUO) carries with it a trojan, buried in the Windows application that can be used to monitor the charger status. Apparently the backdoor enables remote system access.
This just goes to show the importance of checking *ALL* code for security vulnerabilities, no matter how innocuous it may seem. The advent of software-as-a-service on demand code scanning services makes this easier than ever before, and something well worth checking out.
Practice Leader – Security, Bloor Research