|
|
Telegram feature exposes your precise address to hackers - TechAmok
Telegram feature exposes your precise address to hackers - [security]
03:31 PM EST - Jan,09 2021 - post a comment If you're using an Android device-or in some cases an iPhone-the Telegram messenger app makes it easy for hackers to find your precise location when you enable a feature that allows users who are geographically close to you to connect. The researcher who discovered the disclosure vulnerability and privately reported it to Telegram developers said they have no plans to fix it. The problem stems from a feature called People Nearby. By default, it's turned off. When users enable it, their geographic distance is shown to other people who have it turned on and are in (or are spoofing) the same geographic region. When People Nearby is used as designed, it's a useful feature with few if any privacy concerns. After all, a notification that someone is 1 kilometer or 600 meters away still leaves stalkers guessing where, precisely, you are.
Independent researcher Ahmed Hassan, however, has shown how the feature can be abused to divulge exactly where you are. Using readily available software and a rooted Android device, he's able to spoof the location his device reports to Telegram servers. By using just three different locations and measuring the corresponding distance reported by People Nearby, he is able to pinpoint a user's precise location. Telegram lets users create local groups within a geographical area. Hassan said that scammers often spoof their location to crash such groups and then peddle fake bitcoin investments, hacking tools, stolen social security numbers, and other scams.
"Most users don't understand they are sharing their location, and perhaps their home address," Hassan wrote in an email. "If a female used that feature to chat with a local group, she can be stalked by unwanted users."
A proof-of-concept video the researcher sent to Telegram showed how he could discern the address of a People Nearby user when he used a free GPS spoofing app to make his phone report just three different locations. He then drew a circle around each of the three locations with a radius of the distance reported by Telegram. The user's precise location was where all three intersected.
In a blog post, Hassan included an email from Telegram in response to the report he had sent them. It noted that People Nearby isn't enabled by default and that "it's expected that determining the exact location is possible under certain conditions." Telegram representatives didn't respond to an email seeking comment. |
|
Short overview of recent news articles |
|
AMD Adrenalin 25.6.3 Driver Is Available (Jun,30 2025 ) NVIDIA GeForce RTX 5080 SUPER Could Feature 24 GB Memory, Increased (Jun,30 2025 ) Guess What Nvidia Did THIS Time (Jun,29 2025 ) The 10 Best Dinosaur Movies of All Time (Jun,28 2025 ) Microsoft officially confirms that Windows 11 version 25H2 is coming (Jun,28 2025 ) Eddington - Official Trailer 2 (2025) Joaquin Phoenix, Pedro Pascal (Jun,26 2025 ) Microsoft Say System Restore Points Now Expire After 60 Days (Jun,25 2025 ) Facebook, Netflix, and Microsoft Websites Hijacked to Insert Fake (Jun,25 2025 ) I put a $3000 GPU in my Average PC... It Was a Mistake (Jun,24 2025 ) Best External SSD for Mac 2025: After Weeks of Testing, Here's What (Jun,24 2025 ) Mostly boob jokes this week (RTX 5090 DD) - Tech News June 22 (Jun,23 2025 ) Superman - Official 30 Second Spot (2025) (Jun,21 2025 ) 'The fastest road car I've ever been in!' - Ferrari F80 track day (Jun,21 2025 ) CPU SCAM: AMD Ryzen 9800X3D Counterfeits & Fraud (Jun,20 2025 ) 28 Years Later Review (Jun,19 2025 ) HW News - NVIDIA "N1x" CPU Leak, ASUS Xbox ROG Ally, More Intel (Jun,18 2025 ) NVIDIA GeForce 576.80 WHQL Driver (Jun,17 2025 ) The Fantastic Four: First Steps - Official 'H.E.R.B.I.E.' Teaser (Jun,16 2025 ) Huawei Maextro S800 First Look - A True BMW & Mercedes Killer? (Jun,15 2025 ) Upgrade Windows 10 to Windows 10 LTSC Without Losing Data (Jun,14 2025 ) Squid Game: Season 3 - Final Games Trailer (Jun,14 2025 ) WWDC 2025: Everything Revealed in 9 Minutes (Jun,11 2025 ) Microsoft June 2025 Patch Tuesday fixes exploited zero-day, 66 flaws (Jun,10 2025 ) This Malware BREAKS WINDOWS! (Jun,10 2025 ) Reset Forgotten Password without Any Software, without USB drive in (Jun,10 2025 ) Microsoft Will Block Unsupported Hardware For Windows 11 (Jun,08 2025 ) Memory Wars! Apple vs Ryzen - Is Unified Memory Faster than Shared (Jun,08 2025 ) Predator: Killer of Killers - Exclusive Clip (2025) (Jun,06 2025 ) Enable Deep Effect on Samsung One Ui 7 (Jun,06 2025 ) Google Kills Off PayPal in Google Wallet (Jun,05 2025 ) Samsung's Next Flagship Foldable Will be Ultra (Jun,05 2025 ) Over 40 Malicious Chrome Extensions Mimic Popular Brands to Steal (Jun,05 2025 ) The Witcher IV - Unreal Engine 5 tech demo (Jun,03 2025 ) Nintendo Switch 2 Welcome Tour trailer (Jun,02 2025 ) Stranger Things 5 | Date Announcement | Netflix (Jun,01 2025 ) RTX 5060 Review... No wonder NVIDIA tried to stop us from talking (May,31 2025 ) Samsung Galaxy Watch 8 Classic Is Here - 7 New Updates (May,30 2025 ) Biggest Windows 11 24H2 May Update in the Main Release (May,30 2025 ) How Much Money Should You Spend on a Gaming PC? (May,29 2025 ) laud Note vs Note Pin - Which AI Voice Recorder To Choose (May,29 2025 ) Samsung One UI 8.0 vs One UI 7.0 - 25+ Changes (May,29 2025 ) SECRET CODE UPDATE for Samsung Galaxy Phone to Boost Performance & (May,28 2025 ) WhatsApp is finally available on iPad (May,27 2025 ) Simple Trick To Lower CPU Temperatures (May,27 2025 ) Alma & The Wolf - Official Trailer (2025) Ethan Embry, Li Jun Li, (May,26 2025 ) Change These Browser Security Settings NOW (May,25 2025 ) I NEED AMD to Seize This Moment - RX 9060XT (May,24 2025 ) Windows 98 with a G41 Core 2 Duo System (May,23 2025 ) Disable These Windows Settings for Better FPS! (May,23 2025 ) I Got the Golden GPU from Dubai (May,20 2025 )
>> News Archive <<
| |
|
