Latest Top Posts

oneplus-has-a-message-for-watch-3-customers-who-somehow-missed-the-whole-typo-thing

OnePlus Has A Message For Watch 3 Customers Who Somehow Missed The Whole Typo Thing

live-scam-detection-has-been-delayed-until…-who-knows-when?

Live Scam Detection Has Been Delayed Until… Who Knows When?

the-pre-order-perks-for-samsung’s-galaxy-a56-and-a36-have-leaked

The Pre-Order Perks For Samsung’s Galaxy A56 And A36 Have Leaked

disney+-users-will-get-small-samples-of-espn’s-sportscenter

Disney+ Users Will Get Small Samples Of ESPN’s SportsCenter

apple-won’t-comment-on-south-korea’s-fine-for-misusing-user-data

Apple Won’t Comment On South Korea’s Fine For Misusing User Data

Apple’s Find My Network Can Be Exploited To Track Any Bluetooth Device, Even Android Phones

Apple Apple AirTag News Add Comment 3 Min Read
apple’s-find-my-network-can-be-exploited-to-track-any-bluetooth-device,-even-android-phones
Apple’s Find My Network Can Be Exploited To Track Any Bluetooth Device, Even Android Phones
Apple AirTag with iPhone rear

Eric Zeman / Android Authority

TL;DR

  • A flaw in Apple’s Find My network can be exploited to track the location of any Bluetooth device.
  • It lets hackers trick the network into thinking an Android phone or gaming console is an AirTag and then pinpoint its location to within 10 feet.
  • The exploit doesn’t require administrator privileges and works on Bluetooth devices running Linux, Android, or Windows, Smart TVs, gaming consoles, and VR headsets.

Apple’s Find My network makes it easy for users to track the location of their iPhones, Macs, and other possessions using an AirTag. However, as seen previously, it can be misused to stalk unsuspecting users. While Apple has implemented anti-stalking measures to prevent others from tracking your whereabouts with a hidden AirTag, a newly discovered exploit can let hackers leverage the Find My network to track any Bluetooth device, including Android phones.

Discovered by a team of researchers from George Mason University, this exploit essentially lets hackers remotely trick Apple’s Find My network into thinking a Bluetooth device is an AirTag and then track its location “without the owner ever realizing it.” Dubbed nRootTag, the exploit does not require admin-level privileges, has a shocking 90% success rate, and can be used to pinpoint a stationary device’s location to within 10 feet in just a few minutes.

See also  Best Samsung Galaxy S25 Cases Now Available For Purchase

In a blog post highlighting the exploit (via 9to5Mac), the researchers reveal that nRootTag works on a wide range of Bluetooth devices, including computers and mobile devices running Linux, Android, or Windows, Smart TVs, gaming consoles, and VR headsets. The researchers alerted Apple of the exploit in July 2024 and recommended updating the Find My network to improve Bluetooth device verification. However, Apple has yet to implement a fix.

Until Apple patches the loophole, the researchers advise users to “be wary of apps asking for unnecessary Bluetooth permissions and if Bluetooth was unintentionally enabled, keep their device software up-to-date.”

Got a tip? Talk to us! Email our staff at [email protected]. You can stay anonymous or get credit for the info, it’s your choice.

Tags: