Bluetooth exploit can track and identify iOS, Microsoft mobile device users

Bluetooth exploit can track and identify iOS, Microsoft mobile device users 1

A flaw in the Bluetooth communication protocol may expose modern device users to tracking and could leak their ID, researchers claim. 

The vulnerability can be used to spy on users despite native OS protections that are in place and impacts Bluetooth devices on Windows 10, iOS, and macOS machines. This includes iPhones, iPads, Apple Watch models, MacBooks, and Microsoft tablets & laptops. 

On Wednesday, researchers from Boston University David Starobinski and Johannes Becker presented the results of their research at the 19th Privacy Enhancing Technologies Symposium, taking place in Stockholm, Sweden.

According to the research paper, Tracking Anonymized Bluetooth Devices (.PDF), many Bluetooth devices will use MAC addresses when advertising their presence to prevent long-term tracking, but the team found that it is possible to circumvent the randomization of these addresses to permanently monitor a specific device. 

Coinbase 3

Identifying tokens are usually in place alongside MAC addresses and a new algorithm developed by Boston University, called an address-carryover algorithm, is able to “exploit the asynchronous nature of payload and address changes to achieve tracking beyond the address randomization of a device.”

“The algorithm does not require message decryption or breaking Bluetooth security in any way, as it is based entirely on public, unencrypted advertising traffic,” the paper reads. 

See also: Singtel will give free mobile data to people that walk

The Bluetooth low-energy specification, introduced in 2010 and used in Bluetooth 5, is the main focus of the research. During their experiments, the researchers set up a testbed of Apple and Microsoft devices to analyze BLE advertising channels and “advertising events” within standard Bluetooth proximities. 

To conduct the tests, a custom version of Xianjun Jiao’s BTLE software suite and sniffer was used. Over a period of time, advertising events and log files were passively collected and this information was analyzed to elicit data structures which revealed device ID tokens. 

CNET: WhatsApp, Telegram had security flaws that let hackers change what you see

“Most computer and smartphone operating systems do implement address randomizations by default as a means to prevent long-term passive tracking, as permanent identifiers are not broadcasted,” the paper reads. “However, we identified that devices running Windows 10, iOS or macOS regularly transmit advertising events containing custom data structures which are used to enable certain platform-specific interaction with other devices within BLE range.”

It is these identifiers which can be incorporated into an algorithm to track devices and circumvent address randomization by giving attackers data which the researchers call “a temporary, secondary pseudo-identity.” 

TechRepublic: Top 5 cybersecurity challenges for CISOs

While this technique works on Windows, iOS, and macOS systems, the Android operating system is immune as the OS does not continually send out advertising messages. Instead, the Android SDK scans for advertising nearby — rather than advertising itself in a continuous fashion. 

“Any device which regularly advertises data containing suitable advertising tokens will be vulnerable to the carry-over algorithm if it does not change all of its identifying tokens in sync with the advertising address,” the researchers say. “As Bluetooth adoption is projected to grow from 4.2 to 5.2 billion devices between 2019 and 2022 […] establishing tracking-resistant methods, especially on unencrypted communication channels, is of paramount importance.”

ZDNet has reached out to Microsoft and Apple and will update if we hear back. 

Previous and related coverage


Have a tip? Get in touch securely via WhatsApp | Signal at +447713 025 499, or over at Keybase: charlie0


Bluetooth exploit can track and identify iOS, Microsoft mobile device users 2
blank
About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

blank

E-Crypto News Executive Interviews


blank

bitcoin
Bitcoin (BTC) $ 32,548.00
ethereum
Ethereum (ETH) $ 2,074.16
tether
Tether (USDT) $ 1.00
binance-coin
Binance Coin (BNB) $ 290.32
cardano
Cardano (ADA) $ 1.18
xrp
XRP (XRP) $ 0.598070
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.192609
polkadot
Polkadot (DOT) $ 12.94
binance-usd
Binance USD (BUSD) $ 1.00
USD
EUR
GBP
bitcoinBitcoin (BTC)
$ 32,548.00
ethereumEthereum (ETH)
$ 2,074.16
tetherTether (USDT)
$ 1.00
bitcoin-cashBitcoin Cash (BCH)
$ 445.80
litecoinLitecoin (LTC)
$ 120.53
bitcoinBitcoin (BTC)
27.651,97
ethereumEthereum (ETH)
1.762,15
tetherTether (USDT)
0,849575
bitcoin-cashBitcoin Cash (BCH)
378,74
litecoinLitecoin (LTC)
102,40
bitcoinBitcoin (BTC)
23,914.48
ethereumEthereum (ETH)
1,523.98
tetherTether (USDT)
0.734745
bitcoin-cashBitcoin Cash (BCH)
327.55
litecoinLitecoin (LTC)
88.56

Automated trading with HaasBot Crypto Trading Bots

Crypto Scams

Cryptocurrency Exchanges
Cryptocurrency Exchanges and the Plague of Scams and Bans
June 29, 2021
blank
What Role Do Cryptocurrencies Play In The Era Of Ransomware Attacks?
June 9, 2021
Crypto Scams On The Rise As Market Enters Bull Cycle
Crypto Scams On The Rise As Market Enters Bull Cycle
December 22, 2020
Harpreet Singh Sahni perpetrated the Plus Gold Union Coin (PGUC) scam
Sydney Concert Promoter Harpreet Sahni Involved In $50M Crypto PGUC Scam
November 2, 2020
KuCoin hackers steal $150 million
KuCoin Exchange Hacked But Insurance Will Cover The Stolen $150M
September 29, 2020

Blockchain/Cryptocurrency Questions and Answers

Short-Sell Cryptocurrency
How to Short-Sell Cryptocurrency: A Brief Overview
July 17, 2021
Klaytn
What Is Klaytn (KLAY) And How Does It Work?
July 16, 2021
Cryptocurrencies
Our Crypto Roundup Interview Asks- Do Cryptocurrencies Have a Future?
July 15, 2021
Solana
What Is Solana (SOL) And How Does It Work?
June 26, 2021
blank
What Is Plethori Platform And How Does It Work?
June 12, 2021


CryptoCurrencyUSDChange 1hChange 24hChange 7d

bitcoin
Bitcoin (BTC) $ 32,745.00
ethereum
Ethereum (ETH) $ 2,061.40
tether
Tether (USDT) $ 1.00
binance-coin
Binance Coin (BNB) $ 290.94
cardano
Cardano (ADA) $ 1.17
xrp
XRP (XRP) $ 0.596425
usd-coin
USD Coin (USDC) $ 1.00
dogecoin
Dogecoin (DOGE) $ 0.192266
polkadot
Polkadot (DOT) $ 12.91
binance-usd
Binance USD (BUSD) $ 1.00