Tech Gaming Report

Latest Tech & Gaming News

How to steal photos from someone's iPhone from across the street – Naked Security

How to steal photos from someone’s iPhone from across the street – Naked Security

Well-known Google Project Zero researcher Ian Beer has published a blog post that has received a lot of media attention.

The article itself has a completely accurate and interesting title. iOS Zero Click Wireless Proximity Exploit Odyssey..

However, it is the headlines used above that capture the practical essence of the beer attack.

The exploit sequence he understands allows an attacker to break into a nearby iPhone and steal personal data. It uses only a wireless connection and does not need to be clicked or alerted by an innocent user of the device.

Indeed, the beer article ends with Short video Show them how they automatically steal photos from their cell phones using a hacking kit installed in the next room.

  • He uses his iPhone to take a picture of a “secret document” in a room.
  • He gladly keeps the phone “user” (which happens to be a giant pink teddy bear) sitting down watching a YouTube video.
  • He goes next to him and launches an automated radio attack that exploits a kernel bug in the phone.
  • This exploit secretly uploads malware code to your phone, grants access to the Photo app’s data directory, reads “secret” photo files, and invisiblely uploads them to your next laptop.
  • The phone will continue to operate normally throughout, with no warnings, pop-ups, or anything that could alert the user to a hack.

That’s bad news.