Skip to main content
  1. Home
  2. Computing
  3. News

Ambient light sensors can be used to snoop on us while we’re web browsing

By

There are more ways to access your data than by exploiting the various software vulnerabilities and hardware bugs that we seem to hear about on a daily basis. Our gadgets actually have all kinds of weaknesses that could allow nefarious parties to steal our information, and some of them are things we’d probably never consider.

One of those weaknesses stems from the fact that our PCs, tablets, and smartphones are stocked with sensors that extract information from our environments and use that data to make our devices more useful. Some researchers have found a way to use the innocuous-seeming ambient light sensor to grab potentially sensitive browser data and pass it along.

Recommended Videos

The ambient light sensor is used for a couple of purposes. It detects background light levels and adjusts screen brightness, and it works as a proximity sensor to determine when to shut off a smartphone’s screen during a call. As the researchers point out, the ambient light sensor is quite precise, and can measure light intensity from completely dark to incredibly bright.

The specific hack that the researchers developed uses the ambient light sensor to pick up color and lighting information from the screen by tapping into the data the sensor passes to the system. Because the sensor’s data is affected by what’s being displayed on the screen, it can be used in a variety of ways to pick up browser information that affects the light that the screen is giving off.

One simple example is the colors of visited links, which are normally obfuscated by the browser to avoid just this kind of snooping. Essentially, the light sensor readings can be used to distinguish between visited and unvisited links and thus inform an attacker as to which links the user had previously visited.

Light sensor: detecting browsing history

Another example involves using the ambient light sensor data to grab QR codes. That data can be used for such things as hijacking a user’s account when a QR code is used to provide emergency access to an account.

Light sensor: Stealing a QR code #2

So far, the researchers have managed to create attacks that work in Firefox and Chrome on Android devices and on PCs with ambient light sensors. Certain problems exists, such as changing lighting conditions in real-world situations, and also screen brightness variations. Nevertheless, the attack presents yet another reason to wonder who might be stealing our information in ways that we’d never imagine — or prepare against.

Topics
Mark Coppock
Mark Coppock
Computing Writer
Mark Coppock is a Freelance Writer at Digital Trends covering primarily laptop and other computing technologies. He has…
The world’s first 500Hz OLED gaming monitor is here — and it ain’t cheap
The Samsung Odyssey OLED G6 monitor.

Samsung has officially launched the Odyssey OLED G6, the world’s first OLED gaming monitor to feature an ultra-fast 500Hz refresh rate. First unveiled at CES 2025, the 27-inch display is now available for pre-order and targets competitive gamers looking for extreme responsiveness paired with premium OLED visuals.

Surpassing the likes of Asus' ROG Swift PG27AQDP, the new Odyssey OLED G6 (G60SF) makes use of a QD-OLED panel offering a native QHD (2560 × 1440) resolution and a 0.03ms (GtG) response time aimed at minimizing motion blur in fast-paced gameplay. The panel is certified for VESA DisplayHDR True Black 500, which should translate to deep contrast and rich colors. It also includes FreeSync Premium Pro and is also Nvidia G-Sync Compatible, reducing screen tearing and stuttering during gameplay.

Read more
The dual-GPU Intel Arc B580 might be the new Nvidia Titan
The back of the Intel Arc B580 graphics card.

Just yesterday, we reported that one of Intel's partners might be working on an Arc B580 GPU with 24GB of VRAM, doubling the base memory on the card. Now, it seems that an even more impressive GPU might be in the works, set to rival some of the best graphics cards. According to new leaks, we might soon see a dual-GPU Arc B580 with a whopping 48GB of VRAM.

It's been a while since we've seen a dual-GPU anything, much less from Intel. The company's graphics division always targets the mainstream market, with a focus on bringing forth affordable solutions for everyone. Even workstation-oriented Arc GPUs don't aim that high. Still, VideoCardz cites its own sources as it claims that one of Intel's partners is indeed working on such a beastly graphics cards.

Read more
The new macOS update includes a battery boost for Safari
Laptop showing the macos 15.5 update.

The macOS 15.5 update is here, and it's overall pretty light on features. However, the Safari 18.5 update bundled with it does include a new developer feature that will save battery life for users. "Declarative Web Push" is a more efficient approach to web notifications that will drain less battery every time you get a notification on Safari.

The feature already came to iOS and iPadOS in the last update, allowing developers to swap their notification implementations to the simpler JSON format. Just for fun, here's what it looks like:

Read more