A Chinese state-backed research institute claims to have discovered how to decrypt device logs for Apple's AirDrop feature, allowing the government to identify phone numbers or email addresses of those who shared content.
China has a long history of censoring its people, requesting Apple block access to mobile apps, blocking encrypted messaging apps, such as Signal, and creating the Great Firewall of China to control what sites can be visited in the country.
To get around censorship in the country, people turned to Apple's AirDrop feature, which doesn't require cellular service and uses Bluetooth and a private Wi-Fi network to send images and photos between devices.
During the 2019 pro-democracy protests in Hong Kong, protesters frequently used AirDrop to share pamphlets and posters.
In 2022, the New York Times reported that Chinese protestors again turned to AirDrop to spread awareness of protests and anti-Xi messages.
At the time, it was believed this feature was added to prevent it from being used by Chinese protestors.
This change has since been applied to all iOS devices, regardless of their geographic region.
Today, Bloomberg first reported that China's Beijing Wangshendongjian Judicial Appraisal Institute has discovered a way to extract the phone numbers, email addresses, and device names of those who sent and received an AirDropped image from device logs.
The research institute says the sender's device name, email address, and mobile phone number are hashed in the iOS device logs.
Using rainbow tables, the researchers claim to have been able to dehash these fields to gain access to the sender's information.
New Black Basta decryptor exploits ransomware flaw to recover files.
iPhone Triangulation attack abused undocumented hardware feature.
Barracuda fixes new ESG zero-day exploited by Chinese hackers.
Terrapin attacks can downgrade security of OpenSSH connections.
Save $75 on a tablet with this refurbished iPad & accessories deal.
This Cyber News was published on www.bleepingcomputer.com. Publication date: Tue, 09 Jan 2024 21:50:22 +0000