"The new Pwn Plug looks less like a DC power supply plug—the form factor of its predecessor—and more like a small Wi-Fi access point or router. But inside, it's really a Linux-powered NSA-in-a-box, providing white hat hackers and corporate network security professionals a 'drop box' system that can be remotely controlled over a covert Internet channel or a cellular data connection."
"Once a Pwn Plug R2 is deployed and turned on, it will start trying to find a way to call home to establish a persistent SSH connection between the device and its operator's server—including a GSM-based 4G cellular data connection compatible with AT&T and TMobile. "Out of the box you can configure it to try six different covert channels," Porcello said. "It'll automatically tunnel out of whatever network it's plugged into over a bunch of differently used covert channels that attackers usually use, such as tunneling over a trusted protocol like HTTP, SSL, DNS, and ICMP. And then if none of those works, you can always access over 4G. Or if your test is to try to avoid detection, than 4g is the way to go, because none of your control traffic will hit the target network.""
Pretty crazy stuff.