|
|
Telegram feature exposes your precise address to hackers - TechAmok
Telegram feature exposes your precise address to hackers - [security]
03:31 PM EST - Jan,09 2021 - post a comment If you're using an Android device-or in some cases an iPhone-the Telegram messenger app makes it easy for hackers to find your precise location when you enable a feature that allows users who are geographically close to you to connect. The researcher who discovered the disclosure vulnerability and privately reported it to Telegram developers said they have no plans to fix it. The problem stems from a feature called People Nearby. By default, it's turned off. When users enable it, their geographic distance is shown to other people who have it turned on and are in (or are spoofing) the same geographic region. When People Nearby is used as designed, it's a useful feature with few if any privacy concerns. After all, a notification that someone is 1 kilometer or 600 meters away still leaves stalkers guessing where, precisely, you are.
Independent researcher Ahmed Hassan, however, has shown how the feature can be abused to divulge exactly where you are. Using readily available software and a rooted Android device, he's able to spoof the location his device reports to Telegram servers. By using just three different locations and measuring the corresponding distance reported by People Nearby, he is able to pinpoint a user's precise location. Telegram lets users create local groups within a geographical area. Hassan said that scammers often spoof their location to crash such groups and then peddle fake bitcoin investments, hacking tools, stolen social security numbers, and other scams.
"Most users don't understand they are sharing their location, and perhaps their home address," Hassan wrote in an email. "If a female used that feature to chat with a local group, she can be stalked by unwanted users."
A proof-of-concept video the researcher sent to Telegram showed how he could discern the address of a People Nearby user when he used a free GPS spoofing app to make his phone report just three different locations. He then drew a circle around each of the three locations with a radius of the distance reported by Telegram. The user's precise location was where all three intersected.
In a blog post, Hassan included an email from Telegram in response to the report he had sent them. It noted that People Nearby isn't enabled by default and that "it's expected that determining the exact location is possible under certain conditions." Telegram representatives didn't respond to an email seeking comment. |
|
Short overview of recent news articles |
|
Microsoft warns Office 2016/2019 users to switch to the cloud as (Sep,15 2025 ) Get Windows 11 25H2 Right Now (Sep,15 2025 ) iPhone 17 Pro VS iPhone 16 Pro VS iPhone 15 Pro VS iPhone 14 Pro (Sep,14 2025 ) What's the AMD Alternative to an RTX 5070? (Sep,11 2025 ) Apple got my wife, they might get me next... (Sep,10 2025 ) Which Phone Has The Fastest Wi-Fi 7? (Sep,09 2025 ) Apple Event - September 9 (Sep,09 2025 ) Ferrari F430 *MANUAL* with TUBI EXHAUST SCREAMING on the AUTOBAHN! (Sep,08 2025 ) AMD Adrenalin 25.9.1 Driver (Sep,08 2025 ) Google Brings AI Text Tools to its Keyboard (Sep,08 2025 ) The Fastest Lap In F1 History: Max Verstappen's Pole Lap | 2025 (Sep,06 2025 ) You can't download and install Windows 11 25H2 yet as Microsoft (Sep,06 2025 ) A House of Dynamite - Official Teaser (2025) Rebecca Ferguson, Greta (Sep,04 2025 ) RTX 5060 Ti 16GB + Ryzen 5 5600 : Test in 17 Games (Sep,04 2025 ) BUGONIA Trailer 2 (2025) Emma Stone, Jesse Plemons (Sep,02 2025 ) Huawei unveils world-leading AI supercharged hard drive to power (Sep,02 2025 ) AM4 Lives: AMD Ryzen 5 5500X3D CPU Review & Benchmarks (Sep,01 2025 ) I was wrong, iPhone IS better than Android...- 30 Day iPhone (Aug,29 2025 ) 303KM/H BMW X5 M50i GPOWER SOUNDS LIKE THUNDER (Aug,29 2025 ) NVIDIA GeForce 581.15 WHQL drivers (Aug,29 2025 ) Apple Intelligence vs Galaxy AI / Google Pixel AI / Xiaomi HyperAI - (Aug,28 2025 ) The Woman in Cabin 10 - Official Trailer (Aug,28 2025 ) YANGWANG U9 Breaks Global EV Top Speed Record (Aug,28 2025 ) AMD B850 Motherboard Roundup: Sub $200 Models (Aug,26 2025 ) Gamers Nexus: Our Channel Could Be Deleted (Aug,25 2025 ) 2025 Audi A5 E-Hybrid 299HP "250KMH is back!!" // REVIEW on (Aug,24 2025 ) I Can't Stop You From Buying This... But I'll Try - GeForce RTX (Aug,23 2025 ) NVIDIA GeForce 581.08 WHQL Driver (Aug,23 2025 ) Murcielago with flames chasing an F1 car on highway (2025) (Aug,21 2025 ) Windows 11 24H2 Security Update Causes SSD/HDD Failures and (Aug,18 2025 ) Samsung Galaxy Z Fold 7 - Tips, Tricks & Hidden Features! (Aug,17 2025 ) 500Hz OLEDs are Awesome - Gigabyte AORUS FO27Q5P Review (Aug,17 2025 ) They Said my Gaming & Badminton Club Would Never OPEN! (Aug,17 2025 ) NVIDIA GeForce Game Ready 580.97 WHQL Driver (Aug,13 2025 ) When your Bro needs a new computer... (Aug,13 2025 ) WhatsApp's latest update is a huge "convenience" for group chats (Aug,12 2025 ) COLLAPSE: Intel is Falling Apart (Aug,12 2025 ) Useless or Genius: NVMe SSD Coolers (Aug,11 2025 ) 2025 NEW! Audi A6 3.0 TFSI - BETTER than BMW 5? / (Aug,11 2025 ) Ryzen 7 5800X3D vs. 9800X3D, Battlefield 6 Open Beta Benchmark (Aug,10 2025 ) How to Enter BIOS from Windows Using CMD | Easiest Method (No Key (Aug,10 2025 ) Battlefield 6 Open Beta Benchmark: 9800X3D vs. 9700X vs. 265K (Aug,09 2025 ) WhatsApp finally adds a useful photo feature for Android users (Aug,09 2025 ) OpenAI announces ChatGPT changes following user feedback (Aug,09 2025 ) Corsair MAKR75 Review - Ultimate DIY Keyboard Kit (Aug,06 2025 ) 1176 Hardware vs Plugin - Is There Really a Difference? (Aug,06 2025 ) Do this NOW: Use Disposable Windows for Maximum Security! (Aug,06 2025 ) CPU/GPU Scaling: Ryzen 7 5800X3D (RTX 5090, 5080, RX 9070 & 9060 XT) (Aug,06 2025 ) XRP To $1000 By 2030... Know What You Hold BUT SELL YOUR XRP HERE: ? (Aug,05 2025 ) NURBURGRING HEAVY RAINSTORM! MANY Fails, Spins & Slippery Action! (Aug,03 2025 )
>> News Archive <<
| |
|
