Possible Weakness in Apple’s Airdrop Security May Expose User Data

Share: 

Wireless file sharing is one of the better advances in the modern era.

Photo by Duophem from Pexels.

But that doesn’t mean it isn’t without its pitfalls.

Yet most of us probably never even think about it – something that could change once you consider the vast number of potential vulnerabilities to which you could expose yourself using even the most robust technology.

Reports indicate that Apple’s vaunted Airdrop feature could be hiding more than a few security flaws that could make it somewhat undesirable for consumers in the near term. PetaPixel reports that research groups Secure Mobile Networking Lab (SEEMOO) and the Cryptography and Privacy Engineer Group (ENCRYPTO) discovered that attackers could learn the email addresses and phone numbers of Airdrop users even if they didn’t know the person IRL. For those of you that haven’t used Airdrop before, it is a person-to-person file sharing feature that uses manual authentication to make sure everyone approves of what is going down.

Having a complete stranger access that kind of information is somewhat unnerving. The research revealed that it was actually quite easy to do this, too, requiring only a Wifi device and being close to the person with an Apple device. Being close to the person with the Apple device allowed the malicious user to access this information via the sharing pane on an iOS device, PetaPixel reports.

Though Apple hasn’t yet addressed this, the team behind the research has their own novel solution that they call Privatedrop.

A press release for it states:

“PrivateDrop is based on optimized cryptographic private set intersection protocols that can securely perform the contact discovery process between two users without exchanging vulnerable hash values. The researchers’ iOS/macOS implementation of PrivateDrop shows that it is efficient enough to preserve AirDrop’s exemplary user experience with an authentication delay well below one second.”

Do you use Apple’s Airdrop feature to transfer files? Have you ever experienced anything amiss with it? Let us know your thoughts on wireless file sharing and security in the comments below.

And we’ve got a bunch of other photography news on Light Stalking at this link right here.

[PetaPixel]

What We Recommend to Improve Your Photography Fast

It's possible to get some pretty large improvements in your photography skills very fast be learning some fundamentals. Consider this the 80:20 rule of photography where 80% of the improvements will come from 20% of the learnable skills. Those fundamentals include camera craft, composition, understanding light and mastering post-production. Here are the premium guides we recommend.

  1. html cleaner  Easy DSLR –  Friend of Light Stalking, Ken Schultz has developed this course over several years and it still remains the single best source for mastering your camera by identifying the main things that are holding you back.
  2. Word to html  Understanding Composition – As one of the core elements of a good photograph, getting your head around composition is essential. Photzy's guide to the subject is an excellent introduction. Their follow-up on Advanced Composition is also well worth a read.
  3. Word to html  Understanding Light – Also by Photzy, the other essential part of photography is covered in this epic guide and followed up in Understanding Light, Part 2. This is fundamental stuff that every photographer should aim to master.
  4. Word to html  5 Minute Magic Lightroom Workflow – Understanding post production is one of the keys to photographs that you will be proud of. This short course by one of the best in the business will show you how an award-winning photographer does it.

About Author

Avatar

Kehl is our staff photography news writer and has over a decade of experience in online media and publishing and you can get to know him better here

Leave a Reply

Your email address will not be published. Required fields are marked *