Apple AirTag hacked again – free internet with no mobile data plan(nakedsecurity.sophos.com)
nakedsecurity.sophos.com
Apple AirTag hacked again – free internet with no mobile data plan
https://nakedsecurity.sophos.com/2021/05/14/apple-airtags-hacked-again-free-internet-with-no-mobile-data-plan/
7 comments
The blog post [0] of the researcher - which this article is based on
[0] https://positive.security/blog/send-my
[0] https://positive.security/blog/send-my
and the HN discussion, making this a dupe: https://news.ycombinator.com/item?id=27130355
Yeah but that's missing the clickbait title.
If you mock up AirTag broadcasts using one and only one of those messages as a public key, and you send it many times to improve its chance of getting through, I can figure out which hidden message you sent by working out the SHA256 hashes of all possible 100 messages…
Would this be the equivalent of using a one time pad?
Would this be the equivalent of using a one time pad?
How does one “..query Apple’s Find My servers for 32 different “public keys”?
> Bräunlein reported that he could send at about 20 bits/second and receive at about 25 bits/second, but that his hidden data “messages” took anywhere from a minute to an hour to arrive.