Aside from Find My, maps, routes, and emergency SOS, Apple’s location services are quite handy, and they have many useful features. A research team at the University of Maryland has uncovered a critical vulnerability in Apple’s location services, which might allow an unauthorized person to access the location information of millions of routers and potentially even information about a person’s movements in a matter of seconds.
It has been reported that Erik Rye and Dave Levin from the University of Maryland have found that Apple’s location services are working strangely, according to Krebs on Security. It is possible to sneak information from one place to another using a passing Apple device, such as a computer on the other side of the world, over the air, without any other connection to the internet at all.
Using Bluetooth Low Energy (BLE) broadcasts and microcontrollers programmed to function as modems, Fabian Bräunlein, co-founder of Positive Security, devised a way of transmitting a limited amount of arbitrary data from devices without an internet connection to Apple’s iCloud servers. Using a Mac application, he can retrieve data from the cloud and subsequently use a Mac application to retrieve that data from the cloud. His proof-of-concept service Send Me was dubbed in a blog post that he wrote on Wednesday.
As a crowd-sourced location-tracking system, the Find My network on Apple devices functio
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: