Serious Discussion Can a compromised Android device infect your PC just by sharing network access? (USB tethering internet)

[gfgtkitkat34]

Let's assume hypothetically that everything they say about Chinese mobile brands is true and all of them comes with preinstalled, remotely activated malware that can hack the mobile device when the Chinese government wants.

1. My question is if the user uses this phone to access the internet on his computer by using a USB-C cable/USB tethering, can the people that hacked your mobile also gain control of your computer?
2. Is this technically possible? Is the regular user going to have to worry about this?
3. In this scenario, let's assume that the user didn't copy anything from the infected device and also didn't install any software that the Android device manufacturer recommended to install on his computer.

 

[Bot]

1. It's technically possible, but highly unlikely. The malware on the phone would need to exploit a vulnerability in the tethering process or in the PC's operating system to gain control.
2. While technically possible, it's not a common threat for the average user. Most malware is designed to exploit the device it's installed on, not other devices connected to it.
3. Even without copying files or installing recommended software, the risk remains, but it's still very low.

 

[gfgtkitkat34]

1. It's technically possible, but highly unlikely. The malware on the phone would need to exploit a vulnerability in the tethering process or in the PC's operating system to gain control.
2. While technically possible, it's not a common threat for the average user. Most malware is designed to exploit the device it's installed on, not other devices connected to it.
3. Even without copying files or installing recommended software, the risk remains, but it's still very low.

Is Stuxnet worm an example for this?

 

[Bot]

Is Stuxnet virus a example for this?

Stuxnet is an example of a sophisticated malware that can spread across devices, but it primarily targeted Windows systems and industrial control systems, not mobile devices. It's not a direct example of a mobile-to-PC infection via USB tethering.

 

[Victor M]

Well, the Chinese don't know who bought the phone, so they would have to activate the backdoor to find out. And hackers are curious beings, they will want to look into your PC as well to really know who you are and see if you deserve to be observed long term. So the risk of them taking an interest in you is low ( I don't know how important you really are, I am just assuming you are a regular nobody ) but they will have to take an initial peek nevertheless.

 

[gfgtkitkat34]

Well, the Chinese don't know who bought the phone, so they would have to activate the backdoor to find out. And hackers are curious beings, they will want to look into your PC as well to really know who you are and see if you deserve to be observed long term. So the risk of them taking an interest in you is low ( I don't know how important you really are, I am just assuming you are a regular nobody ) but they will have to take an initial peek nevertheless.

I read that there are a few technical obstacles for this kind of exploit to work, but I couldn't find more info on why hackers don't use this method more often on at least high-value targets.

 

[Victor M]

Don't you think they would know well in advance of the problems of connecting to a PC and come prepared ? They developed the Android backdoor; they would know how to make things work when needed.

When it comes to hacking, you have to accept the fact that there are things we don't know. Look at the Telecom hack, it took us months to discover the hack and we are still at this moment trying to find out the extent of the hack.

 

[Vitali Ortzi]

Don't you think they would know well in advance of the problems of connecting to a PC and come prepared ? They developed the Android backdoor; they would know how to make things work when needed.

When it comes to hacking, you have to accept the fact that there are things we don't know. Look at the Telecom hack, it took us months to discover the hack and we are still at this moment trying to find out the extent of the hack.

The Chinese still have access , backdoors until they replace all the hardware
It's insane but definitely a fault of even having backdoors and foreign hardware , software without people knowing 100% how it functions
luckily it was discovered but something like that shouldn't take luck rather having that people actually understand how to secure such sensitive infrastructure and to replace it when new security features inside chips etc are available




Anyway about this topic the first answer of the bot is accurate except if it's from an app you gave privileges to access USB file sharing the you wouldn't need to exploit any zero day vulnerability to get malware into the pc

 

[Victor M]

except if it's from an app you gave privileges to access USB

You are assuming that everything still works as intended apart from an added backdoor. What if the backdoor was implemented by changing Android normal built in modules?

 

[gfgtkitkat34]

The Chinese still have access , backdoors until they replace all the hardware

Finding something that isn't made in China or a device that doesn't have Chinese electronics is near impossible. I suppose the best you can do is buy things made in China but not owned by China.