Researchers from George Mason University have identified a critical flaw in Apple's Find My app, which poses a potential national security threat. The flaw allows cybercriminals to deceive the network into identifying any Bluetooth-enabled device as a lost AirTag, providing them with the ability to track users covertly. With a success rate of 90% in their tests, the researchers emphasized the implications for military personnel and public figures, indicating that a compromised device could be tracked even when disconnected from the internet. These findings raise alarms about personal security and possible harassment by malicious actors.
The core issue is that our attack effectively turned Apple's Find My network—comprising 1.5 billion iPhones—into the largest global espionage system, with no cost for attackers.
A terrorist leader who avoids carrying a phone for security reasons could still be tracked if they use an infected laptop. Nearby iPhones would automatically report their location.
Collection
[
|
...
]