|
|
Telegram feature exposes your precise address to hackers - TechAmok
Telegram feature exposes your precise address to hackers - [security]
03:31 PM EST - Jan,09 2021 - post a comment If you're using an Android device-or in some cases an iPhone-the Telegram messenger app makes it easy for hackers to find your precise location when you enable a feature that allows users who are geographically close to you to connect. The researcher who discovered the disclosure vulnerability and privately reported it to Telegram developers said they have no plans to fix it. The problem stems from a feature called People Nearby. By default, it's turned off. When users enable it, their geographic distance is shown to other people who have it turned on and are in (or are spoofing) the same geographic region. When People Nearby is used as designed, it's a useful feature with few if any privacy concerns. After all, a notification that someone is 1 kilometer or 600 meters away still leaves stalkers guessing where, precisely, you are.
Independent researcher Ahmed Hassan, however, has shown how the feature can be abused to divulge exactly where you are. Using readily available software and a rooted Android device, he's able to spoof the location his device reports to Telegram servers. By using just three different locations and measuring the corresponding distance reported by People Nearby, he is able to pinpoint a user's precise location. Telegram lets users create local groups within a geographical area. Hassan said that scammers often spoof their location to crash such groups and then peddle fake bitcoin investments, hacking tools, stolen social security numbers, and other scams.
"Most users don't understand they are sharing their location, and perhaps their home address," Hassan wrote in an email. "If a female used that feature to chat with a local group, she can be stalked by unwanted users."
A proof-of-concept video the researcher sent to Telegram showed how he could discern the address of a People Nearby user when he used a free GPS spoofing app to make his phone report just three different locations. He then drew a circle around each of the three locations with a radius of the distance reported by Telegram. The user's precise location was where all three intersected.
In a blog post, Hassan included an email from Telegram in response to the report he had sent them. It noted that People Nearby isn't enabled by default and that "it's expected that determining the exact location is possible under certain conditions." Telegram representatives didn't respond to an email seeking comment. |
|
Short overview of recent news articles |
|
AMD 21.1.1 Adrenalin driver (Jan,21 2021 ) Former Ripple Advisor Expected to Lead OCC Under Biden (Jan,21 2021 ) Will altcoins like XRP, Monero, Zcash see comeback to pre-2018 (Jan,21 2021 ) Pornhub adds XRP, BNB, USDC, and DOGE to its payment options (Jan,20 2021 ) At Least 25% of Value Deployed in DeFi Will Move Away from Ethereum (Jan,20 2021 ) Brave private browser integrates IPFS support to desktop version (Jan,20 2021 ) Ripple pins hopes on Biden administration as co-founder sells 28M (Jan,20 2021 ) Malwarebytes says it was targeted by SolarWinds hackers too (Jan,20 2021 ) DuckDuckGo Search Engine Surpasses 100 Million Daily Searches (Jan,20 2021 ) TOP UPCOMING SCI-FI MOVIES 2021 (Jan,18 2021 ) Bitfinex Executives Deny Allegations of Issuing USDT to Pump BTC (Jan,18 2021 ) Ripple price analysis: XRP hints at a massive breakout to $0.40 (Jan,18 2021 ) For All Mankind S2 trailer (Jan,18 2021 ) Goldman Sachs to Enter Crypto Market 'Soon' (Jan,17 2021 ) Apple extends free TV+ trials (Jan,16 2021 ) US Fed: CBDC a very high priority to combat bad private sector money (Jan,16 2021 ) WhatsApp delays the enforcement of its new privacy terms by 3 months (Jan,15 2021 ) Almost 100 Million XRP Shifted by Ripple, Bitfinex and Coinbase (Jan,15 2021 ) Ripple Unveils Plans To Expand Its Presence In Europe (Jan,15 2021 ) RMY OF THE DEAD Trailer Teaser (2021) (Jan,15 2021 ) OCC Chief Brian Brooks Is Stepping Down Thursday (Jan,14 2021 ) CHERRY Official Trailer (2021) Tom Holland (Jan,14 2021 ) Samsung's Galaxy S21 Flagships are Prettier and More Affordable (Jan,14 2021 ) BLISS Official Trailer (2021) (Jan,13 2021 ) Japan's FSA Says XRP Not a Security: Report (Jan,13 2021 ) Grayscale starts dissolving XRP trust after SEC deems XRP a security (Jan,13 2021 ) GeForce RTX 3060 in February 2020 (Jan,13 2021 ) Gensler Said to Be Named SEC Chairman: Reuters (Jan,13 2021 ) Intel's Rocket Lake-S Core i9-11900K CPU benchmarked (Jan,12 2021 ) Mark Cuban: crypto trading is exactly like the internet stock bubble (Jan,12 2021 ) Bitcoin plummets by the most since March (Jan,11 2021 ) $2.4 Billion Worth of BTC, ETH, XRP, and Other Coins Liquidated (Jan,11 2021 ) Space Sweepers - Official Teaser (Jan,10 2021 ) XRP Climbs 10% In Bullish Trade (Jan,10 2021 ) Inside Iceland's Massive Bitcoin Mine (Jan,10 2021 ) Telegram feature exposes your precise address to hackers (Jan,09 2021 ) Donald Trump has been permanently banned from Twitter (Jan,09 2021 ) Storming of The US Capitol In Washington DC (Jan,09 2021 ) WhatsApp privacy fiasco, recommends Skype instead (Jan,09 2021 ) Ripple, Chris Larsen and Coinbase Transfer Whopping 520 Million XRP (Jan,09 2021 ) Ripple CTO says banks can issue stablecoins on XRPL (Jan,09 2021 ) Hackers can clone Google Titan 2FA keys (Jan,08 2021 ) Apple allegedly working with Hyundai (Jan,08 2021 ) The Difference Between A Baby Boomer And A Millennial (Jan,08 2021 ) Bitcoin's Market Value Now Exceeds That of Facebook (Jan,08 2021 ) Get Crying Suns for Free (Jan,08 2021 ) Bitcoin hits $40,000 but will the bull run continue? (Jan,08 2021 ) US Dollar Crashes To USD 40,000 per Bitcoin (Jan,08 2021 ) NVIDIA Releases GeForce 461.09 WHQL Drivers (Jan,07 2021 ) XRP Rallies While Bitcoin Nears USD 38K & Total Market Cap Smashes (Jan,07 2021 )
>> News Archive <<
| |
|
