i thought these were two of the more interesting articles about security that i have read recently. the first, “an evil usb cable”, reminds me more of the wild state of IoT security these days. it also reminded me to be aware of where i order equipment from even if it seems to be as mundane and worry-free as a usb cable.
tl;dr version: the creator enclosed a wifi chip in the usb end of a usb to lightning cable and was able to effectively run malicious instructions on a macbook from his phone.
the, second about the possibility of hacking android with a malicious png image, reminded me how some of us who (also mentioned in the comments) buy non-flagship model phones on budget networks may never see an android update during the life of that phone.
neither has reportedly been exploited in the wild and the usb creator says he only did so to prove it was possible. stay safe out there, folks