Skip to main content

Your smartphone or laptop battery could be used to track you, researchers say

battery status api tracks phone laptop samsung from galaxy note 4
Digital Trends / Robert Nazarian
European researchers published a paper revealing that your privacy could be compromised from the battery in your smartphone or laptop. Most people are probably unaware of something called the battery status API. The World Wide Web Consortium (W3C) introduced it in 2012, and the Firefox, Opera, and Chrome browsers support it.

Battery status API explained

It is a HTML5 specification that’s supposed to help websites conserve energy for those users that have minimal battery life remaining. Basically, the website can read the battery state of any device, such as how much life remains in terms of both minutes and percentage. Based on these results, the website can automatically disable power hungry features on webpages to conserve energy.

Related Videos

How is your privacy compromised?

So far so good right? Unfortunately the main problem with the API is that websites can gather this information without permission from visitors. The researchers concluded that websites can piece together the information from multiple visits through a third-party script, thus creating a fingerprint for each user. This could theoretically happen across different sites and even affect users who constantly delete cookies or are behind a VPN or corporate firewall.

battery tech

The potential issue was raised back in 2012 and referred to in the W3C specification of the API. The “Security and privacy considerations” section has the following statement: “The information disclosed has minimal impact on privacy or fingerprinting, and therefore is exposed without permission grants.”

Are you at risk?

The study seems to be stirring up some technopanic in the tech world, but the potential danger appears to be very limited. The study was only conducted with the Firefox browser in Linux using the UPower tool. The researchers concluded the information gathered from Firefox in Windows, Mac OS X, and Android was too significant to create a fingerprint.

Furthermore, the researchers filed a bug report for the exploit with Firefox in Linux, and it was fixed in June 2015. The study never demonstrates a similar exploit in either the Chrome or Opera browsers, or even a mobile device.

The report demonstrates an issue that was already fixed, but its intent is to “draw attention to this privacy issue by demonstrating the ways to abuse the API for fingerprinting and tracking.” In other words … create buzz among tech sites, which leads to more technopanic.

No exploit should be taken lightly, but further evidence needs to be demonstrated before we start panicking on this one. And even if this evidence does surface, the API can be updated to include user permissions or whatever is necessary to thwart any potential privacy issues.

Editors' Recommendations

The Windows 11 taskbar is getting an important new update
windows 11 taskbar third party app pinning

Microsoft is working on new experiences for Windows that will allow developers to enable pinning for third-party applications, as well as enable pinning to the Taskbar.

Microsoft recently announced the details of these upcoming functions in a blog post. This is the brand's attempt to universalize its pinning process across all apps used on Windows. In practice, it will be similar to how pinning works on the Edge browser, with the Windows 11 users being notified by the Action Center about a request for pinning to the Taskbar by the app in question.

Read more
These Android apps are spying on you — and there’s no easy way to stop them
Illustration of a giant eye stalking through a phone

Android’s security woes need no introduction, but another threat that hasn’t received its fair share of awareness relates to spyware and stalkerware apps. These apps can secretly be installed on a victim’s phone to monitor their activity and can be exploited to harass victims of domestic abuse and engage in online stalking. All someone needs is physical access to the victim's phone to install these apps, which is not too difficult in cases of domestic abuse.

Call it an app-fueled version of AirTag stalking, but on steroids, because these spyware apps can steal everything including messages, call logs, emails, photos, and videos. Some can even activate the microphone and the camera, and secretly transfer these recordings to a remote server where the abuser can access it. Since Google Play's policies don't allow stalking apps, these apps are sold via third-party websites and need to be sideloaded.

Read more
What is Amazon Music: everything you need to know
Amazon Music

It's a jungle of music streaming platforms out there, so it stands to reason that Amazon would have one among its massive kingdom of services. And while Amazon Music might not be top of mind among the Spotifys and Apple Musics of the world, you might be surprised by its 100-million-song library, high-resolution and spatial audio offerings, podcast library, Alexa voice control, and a pretty amiable user interface that makes finding music pretty easy.

Amazon Music's subscriptions range from free to its premium Music Unlimited tier, which can be added for $9 per month on top of a subscription to Amazon Prime. But they all come with some quirks and features. We're going to break them all down for you to help you choose which, if any, Amazon Music plan is right for you.

Read more