|
|
Telegram feature exposes your precise address to hackers - TechAmok
Telegram feature exposes your precise address to hackers - [security]
03:31 PM EST - Jan,09 2021 - post a comment If you're using an Android device-or in some cases an iPhone-the Telegram messenger app makes it easy for hackers to find your precise location when you enable a feature that allows users who are geographically close to you to connect. The researcher who discovered the disclosure vulnerability and privately reported it to Telegram developers said they have no plans to fix it. The problem stems from a feature called People Nearby. By default, it's turned off. When users enable it, their geographic distance is shown to other people who have it turned on and are in (or are spoofing) the same geographic region. When People Nearby is used as designed, it's a useful feature with few if any privacy concerns. After all, a notification that someone is 1 kilometer or 600 meters away still leaves stalkers guessing where, precisely, you are.
Independent researcher Ahmed Hassan, however, has shown how the feature can be abused to divulge exactly where you are. Using readily available software and a rooted Android device, he's able to spoof the location his device reports to Telegram servers. By using just three different locations and measuring the corresponding distance reported by People Nearby, he is able to pinpoint a user's precise location. Telegram lets users create local groups within a geographical area. Hassan said that scammers often spoof their location to crash such groups and then peddle fake bitcoin investments, hacking tools, stolen social security numbers, and other scams.
"Most users don't understand they are sharing their location, and perhaps their home address," Hassan wrote in an email. "If a female used that feature to chat with a local group, she can be stalked by unwanted users."
A proof-of-concept video the researcher sent to Telegram showed how he could discern the address of a People Nearby user when he used a free GPS spoofing app to make his phone report just three different locations. He then drew a circle around each of the three locations with a radius of the distance reported by Telegram. The user's precise location was where all three intersected.
In a blog post, Hassan included an email from Telegram in response to the report he had sent them. It noted that People Nearby isn't enabled by default and that "it's expected that determining the exact location is possible under certain conditions." Telegram representatives didn't respond to an email seeking comment. |
|
Short overview of recent news articles |
|
Nintendo Switch 2 Welcome Tour trailer (Jun,02 2025 ) Stranger Things 5 | Date Announcement | Netflix (Jun,01 2025 ) RTX 5060 Review... No wonder NVIDIA tried to stop us from talking (May,31 2025 ) Samsung Galaxy Watch 8 Classic Is Here - 7 New Updates (May,30 2025 ) Biggest Windows 11 24H2 May Update in the Main Release (May,30 2025 ) How Much Money Should You Spend on a Gaming PC? (May,29 2025 ) laud Note vs Note Pin - Which AI Voice Recorder To Choose (May,29 2025 ) Samsung One UI 8.0 vs One UI 7.0 - 25+ Changes (May,29 2025 ) SECRET CODE UPDATE for Samsung Galaxy Phone to Boost Performance & (May,28 2025 ) WhatsApp is finally available on iPad (May,27 2025 ) Simple Trick To Lower CPU Temperatures (May,27 2025 ) Alma & The Wolf - Official Trailer (2025) Ethan Embry, Li Jun Li, (May,26 2025 ) Change These Browser Security Settings NOW (May,25 2025 ) I NEED AMD to Seize This Moment - RX 9060XT (May,24 2025 ) Windows 98 with a G41 Core 2 Duo System (May,23 2025 ) Disable These Windows Settings for Better FPS! (May,23 2025 ) I Got the Golden GPU from Dubai (May,20 2025 ) Windows 10 emergency update KB5061768 fixes BitLocker boot loops - (May,19 2025 ) 2025 AUDI S5 AVANT // 0-100 100-200 TOP SPEED POV & SOUND (May,19 2025 ) Jurassic World Rebirth - Official 'Alert' Teaser Trailer (2025) (May,18 2025 ) F1 25 and F1 The Movie hand in hand (May,18 2025 ) Everyone is Cooling Their PC Wrong (May,17 2025 ) M5 KILLER? Testing the MERCEDES E63S AMG! (May,16 2025 ) Samsung Fully Reveals 5.8mm-Thick Galaxy S25 Edge (May,16 2025 ) Apple Intros New Accessibility Apps, Plus Accessibility "Labels" (May,16 2025 ) Americana - Official Trailer (2025) Sydney Sweeney, Halsey, Simon (May,16 2025 ) Aston Martin x Apple CarPlay Ultra - Next generation of automotive (May,16 2025 ) Google TAG deleted 23,000+ YouTube channels in January, February, (May,15 2025 ) NVIDIA GeForce Game Ready 576.40 WHQL Driver Released (May,14 2025 ) F1 - Official Trailer #2 (2025) Brad Pitt, Damson Idris, Kerry (May,13 2025 ) The Old Guard 2 - Official Trailer (2025) Charlize Theron, KiKi (May,11 2025 ) I think I know why Ryzen 9000 Series CPUs are Dying...(!) (May,11 2025 ) Is Windows Defender good enough in 2025? (May,10 2025 ) AMD Adrenalin 25.5.1 Driver Released for Doom: The Dark Ages (May,09 2025 ) Ripple SEC Grip OVER, XRP Freedom of USE, Market MODE BULL RUN (May,09 2025 ) "Is x86 Actually Screwed?" ft. Wendell of Level1 Techs - (May,08 2025 ) Android's New Design Guidelines Leaked (May,07 2025 ) Grand Theft Auto VI trailer #2 (May,06 2025 ) Microsoft's Dirty Secret: Your Old PC is Now Trash! (May,05 2025 ) No Noise Cancelling? GOOD. Unboxing the nwm One Headphones & First (May,04 2025 ) NEW! 2025 Audi S5 (367hp) | 0-258 km/h acceleration (May,04 2025 ) Bugatti Bolide vs Nurburgring. 1825 HorsePower Insanity (May,02 2025 ) This will be the largest tech Yard Sale EVER! Insanely low prices on (May,01 2025 ) Skoda Kodiaq RS 245 // 0-100 100-200 TOP SPEED POV & SOUND (May,01 2025 ) Disable or Uninstall Windows Recall to Protect Your Data Privacy (May,01 2025 ) A new Alternative to Nextcloud? OpenCloud presented and local (May,01 2025 ) NVIDIA GeForce Hotfix Driver 576.26 Available (Apr,29 2025 ) 2025 Porsche 911 992.2 GTS T HYBRID | SOUND 0-100 100-200 200-300 & (Apr,28 2025 ) We Made Perfect Thermal Paste in a Factory, ft. Der8auer | Made In (Apr,28 2025 ) Cyber Security Company CEO Arrested for Installing Malware on (Apr,28 2025 )
>> News Archive <<
| |
|
