Energizer battery charger contains backdoor? REALLY?

Energizer Duo
WHAT? Un-freaking-believable! Energizer battery charger contains backdoor

The United States Computer Emergency Response Team (US-CERT) has warned that the software included in the Energizer DUO USB battery charger contains a backdoor that allows unauthorized remote system access. In an advisory, the US-CERT warned that he installer for the Energizer DUO software places the file UsbCharger.dll in the application’s directory and Arucer.dll in the Windows system32 directory. An attacker is able to remotely control a system, including the ability to list directories, send and receive files, and execute programs. The backdoor operates with the privileges of the logged-on user.

When considering a battery charger, if there’s an open source one, choose it – and avoid the one that comes with software for no good reason, otherwise this could happen… MAKE stocks the MintyBoost, and while that charges devices (not batteries) – it’s open source, does not require software, will not trojan your computer.

current: @adafruit - previous: MAKE, popular science, hackaday, engadget, fallon, braincraft ... howtoons, 2600...

View more articles by Phillip Torrone