Updated:08:45 AM EDT Aug 21


this is ggmania.com subsite Apple's AirDrop and password sharing features can leak iPhone numbers - TechAmok

TOP STORIES

HEADLINES

Windows 10 20H1 major improvements revealed
Slipknot - Gun Cover!
10-Second Video Of A Mom Embarrassing Her Daughter
Lock Picker Bypasses Popular Security System With $2 Device
NVIDIA Issues Warning to Upgrade Drivers Due to Security Patches
20 Awesome Tricks with WD-40
Slipknot - Solway Firth [OFFICIAL VIDEO]
Japan-Korea Trade Spat and Toshiba Blackout Hike DRAM Prices by 20%
3 FROM HELL Official Trailer (2019) Rob Zombies, Horror Movie
25 million Android devices get infected
Ryzen 9 3900X & Ryzen 7 3700X Review
3-Second Video Of A Cat Jumping Over A Gate
Emily Ratajkowski Dancing GIF
Fast & Furious Presents: Hobbs & Shaw - Final Trailer
Intel to Cut Prices of its Desktop Processors by 15%
Succubus Trailer
DXR Tech Demo
Terminator: Dark Fate - Official Teaser Trailer (2019)

Dove Cameron Looks Awesome
Underwater - Official Trailer
A Dude Getting Pranked By Skillful Turkish Ice Cream Scooper
Why Jurassic Park Looks Better Than Its Sequels
Microsoft App Brings Spam Filter, AI Sorting to Your Text Messages
Apple is planning to launch Apple TV+ by November at $9.99 per month
Apple Card is now available + 3% cash back for Uber / Uber Food
WD announces a 12TB external HDD
NVIDIA GeForce 436.02 WHQL driver
Marvel's Avengers Gameplay Video
Modern Warfare - Official GeForce RTX Ray Tracing Reveal Trailer
Madison Beer Staring Into The Camera
Google Drive will introduce long-asked-for file shortcuts feature
New Attack exploiting serious Bluetooth weakness
YouTube Originals will be free beginning Sept 24 to non-paying users
Dave Chappelle Netflix Standup Comedy Special Trailer
Botanist Rescues Abandoned Coyote Pup
Apple reportedly locking out unauthorized battery replacement

Apple's AirDrop and password sharing features can leak iPhone numbers - [security]
05:26 PM EDT - Aug,01 2019 - post a comment

Apple makes it easy for people to locate lost iPhones, share Wi-Fi passwords, and use AirDrop to send files to other nearby devices. A recently published report demonstrates how snoops can capitalize on these features to scoop up a wealth of potentially sensitive data that in some cases includes phone numbers.

Simply having Bluetooth turned on broadcasts a host of device details, including its name, whether it's in use, if Wi-Fi is turned on, the OS version it's running, and information about the battery. More concerning: using AirDrop or Wi-Fi password sharing broadcasts a partial cryptographic hash that can easily be converted into an iPhone's complete phone number. The information - which in the case of a Mac also includes a static MAC address that can be used as a unique identifier - is sent in Bluetooth Low Energy packets.

The information disclosed may not be a big deal in many settings, such as work places where everyone knows everyone anyway. The exposure may be creepier in public places, such as a subway, a bar, or a department store, where anyone with some low-cost hardware and a little know-how can collect the details of all Apple devices that have BLE turned on. The data could also be a boon to companies that track customers as they move through retail outlets. As noted above, in the event someone is using AirDrop to share a file or image, they're broadcasting a partial SHA256 hash of their phone number. In the event Wi-Fi password sharing is in use, the device is sending partial SHA256 hashes of its phone number, the user's email address, and the user's Apple ID. While only the first three bytes of the hash are broadcast, researchers with security firm Hexway (which published the research) say those bytes provide enough information to recover the full phone number.

Hexway's report includes proof-of-concept software that demonstrates the information broadcast. Errata Security CEO Rob Graham installed the proof-of-concept on a laptop that was equipped with a wireless packet sniffer dongle, and within a minute or two he captured details of more than a dozen iPhones and Apple Watches that were within radio range of the bar where he was working

Short overview of recent news articles

Aug,16 2019 Certified Drivers Apparently Unsafe
Aug,15 2019 AA tells airlines MacBook Pros with defective batteries can't fly
Aug,14 2019 Star Wars Resistance Season 2 - Trailer (Official)
Aug,13 2019 The World's Tallest Water Slide Was a Terrible, Tragic Idea
Aug,13 2019 Miley Cyrus Works Her Booty In A Thong Bikini
Aug,13 2019 New Samsung Camera Sensor for Phones: 108-MP Photos, 6K Videos
Aug,13 2019 Apple Expands Student ID Support in Apple Wallet
Aug,12 2019 Intel "Tiger Lake" Supports PCIe Gen 4
Aug,12 2019 AMD Releases Radeon Software Adrenalin 19.8.1 Drivers
Aug,12 2019 Free to play Angry Birds Friends available now
Aug,12 2019 Huawei Harmony OS OFFICIAL - Enter The NEW ERA!
Aug,11 2019 Windows 10 20H1 major improvements revealed
Aug,11 2019 Slipknot - Gun Cover!
Aug,10 2019 RUNNING WITH THE DEVIL Trailer (2019) Nicolas Cage Movie
Aug,10 2019 10-Second Video Of A Mom Embarrassing Her Daughter
Aug,10 2019 How They Made Me Look 23 in Gemini Man
Aug,09 2019 Samsung announces the PM1733 PCIe 4.0
Aug,09 2019 All Four Top US Carriers to Offer 5G Note10, with Varying Band
Aug,09 2019 Apple Offers Rewards up to $1 Million for iPhone Vulnerabilities
Aug,09 2019 Telegram 5.10 released with silent messages
Aug,08 2019 Lock Picker Bypasses Popular Security System With $2 Device
Aug,08 2019 Some pro hide and seek video
Aug,07 2019 Samsung Note10 Comes in Two Sizes
Aug,07 2019 Samsung Galaxy Watch Active2 Gains LTE, Touch Bezel, New Sizes
Aug,07 2019 New Android Feature Speaks When You Can't During a 911 Call
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs