Skip to main content
  1. Home
  2. Mobile
  3. News

Researchers find a scary data vulnerability in Apple’s AirDrop

By
Digital Trends

Hackers can tap into AirDrop data and pull your phone number or your email address. This issue has been known since 2019 and has yet to be patched or acknowledged by Apple, though it impacts almost 1.5 billion Apple devices today.

According to a report from security researchers at Germany’s Technical University of Darmstadt, the core of this issue is the way in which AirDrop shares files between Apple devices using the address book and contacts list as an option by default. Per the researchers, since AirDrop leverages “a mutual authentication mechanism,” to compare phone numbers, as well as email addresses, a hacker can easily intercept this information using “a Wi-Fi-capable device” that is nearby to an Apple user sharing through MacOS, iOS, or iPadOS via AirDrop. A proof of concept attack can be found on GitHub.

Recommended Videos

This can be done even if the hacker isn’t in the user’s address book or contacts list. It happens both ways, via Sender Leakage, as well as Receiver Leakage, according to the researchers.

Related

Apple does try to protect the exchanged phone numbers and email addresses via “obfuscating,” but security researchers have found that it does not prevent the reversing of hash values. These can be “quickly reserved,” according to security researchers, through brute force attacks.

The researchers at the Technical University of Darmstadt have developed “PrivateDrop” which can replace AirDrop’s flawed design. This solution is reportedly based on optimized cryptographic private set intersection protocols.

This means it can complete exchanges between certain devices without exchanging the hash values that could otherwise be interpreted. This all can occur with a delay time of around a second. This project is available on GitHub, for those interested in the research behind what went into developing it.

Since Apple hasn’t yet officially released a fix, you can try to avoid using or completely turn off AirDrop if you are concerned. To do this on an iPhone or an iPad, click Settings > General. From there, tap AirDrop > Receiving Off. On MacOS, you can turn off AirDrop by clicking to the Control Center next to the date and time, choosing AirDrop, and then toggling the switch to Off. Additional details are available via Apple if you wish to learn more about AirDrop on MacOS.

Editors' Recommendations

Topics
Arif Bacchus
Arif Bacchus
Former Digital Trends Contributor
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
When will Apple release iOS 18? Here’s what we know
An iPhone 14 laying face-down on a wood table.

Apple's annual Worldwide Developers Conference (WWDC) will start on Monday, June 10. During the conference keynote, the company is expected to unveil new software updates for its major products, including iOS 18 for iPhones.

iOS 18 is expected to be a major iPhone update, likely ushering in a new design and AI features. If you are wondering when you can get your hands on the latest software version, here's everything you need to know about iOS 18's release date.
When will the iOS 18 beta be released?

Read more
Everything you need to know about the massive Apple App Store outage
App Store on-screen illustration

Happy Wednesday evening, everyone! You're unwinding for the day, getting ready for a relaxing night, and ... you realize that the App Store and a bunch of other Apple services aren't working. Don't worry, you aren't alone.

What Apple services are down? When did the problems start? Is the outage still ongoing? Here's everything you need to know.
When did the App Store outage start?
According to DownDetector, reports of outages with the App Store flooded in a little after 6 p.m. ET. Reports appear to have spiked at over 6,000, indicating pretty widespread problems.

Read more
The 7 biggest features we expect to see in iOS 18
The home screen on the Apple iPhone 15 Plus.

Apple revealed that its Worldwide Developers Conference (WWDC) will take place on June 10. This is when we expect to see the next iteration of software across all of Apple’s products, including iOS 18.

From the sounds of it, we’re in for a big update with iOS 18, rumored to be one of the “biggest updates” yet. Here’s what we expect from Apple's next major iPhone update with iOS 18.
A more customizable home screen

Read more