AirDrop 'Cracked' By Chinese Authorities to Identify Senders

by

Apple's AirDrop feature has reportedly been cracked by a Chinese state-backed institution, allowing authorities to identify senders who share "undesirable content" over the peer-to-peer wireless protocol (via Bloomberg).

airdrop videos ios 17
AirDrop is Apple's ad-hoc service that lets users discover nearby Macs and iOS devices and securely transfer files between them over Wi-Fi and Bluetooth. Users can send and receive photos, videos, documents, contacts, passwords and anything else that can be transferred from a Share Sheet.

Apple advertises the protocol as secure because the wireless connection uses Transport Layer Security (TLS) encryption, but the Beijing Municipal Bureau of Justice (BMBJ) says it has devised a way to bypass the protocol's encryption and reveal identifying information.

According to the BMBJ's website, iPhone device logs were analyzed to create a "rainbow table" which allowed investigators to convert hidden hash values into the original text and correlate the phone numbers and email accounts of AirDrop content senders.

The "technological breakthrough" has successfully helped the public security authorities identify a number of criminal suspects, who use the AirDrop function to spread illegal content, the BMBJ added.

"It improves the efficiency and accuracy of case-solving and prevents the spread of inappropriate remarks as well as potential bad influences," the bureau added.

It is not known if the security flaw in the AirDrop protocol has been exploited by a government agency before now, but it is not the first time a flaw has been discovered. In April 2021, German researchers found that the mutual authentication mechanism that confirms both the receiver and sender are on each other's address book could be used to expose private information. According to the researchers, Apple was informed of the flaw in May of 2019, but did not fix it.

Apple limited the use of the AirDrop on devices in China in November 2022, after anti-government activists used the function to spread political leaflets. AirDrop became restricted by default to Contacts Only, and the option to turn on AirDrop for "Everyone" was limited to 10 minutes.

With the launch of iOS 16.2, Apple expanded the AirDrop limitation it introduced in China to all users globally, but Apple said that the feature was actually introduced in an effort to cut down on spam content spread in crowded areas like malls and airports.

Note: Due to the political or social nature of the discussion regarding this topic, the discussion thread is located in our Political News forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Tags: AirDrop, China

Popular Stories

iPhone SE 4 Vertical Camera Feature

iPhone SE 4 Rumored to Use Same Rear Chassis as iPhone 16

Friday July 19, 2024 7:16 am PDT by
Apple will adopt the same rear chassis manufacturing process for the iPhone SE 4 that it is using for the upcoming standard iPhone 16, claims a new rumor coming out of China. According to the Weibo-based leaker "Fixed Focus Digital," the backplate manufacturing process for the iPhone SE 4 is "exactly the same" as the standard model in Apple's upcoming iPhone 16 lineup, which is expected to...
Read Full Article133 comments
iPhone 16 Pro Sizes Feature

iPhone 16 Series Is Just Two Months Away: Everything We Know

Monday July 15, 2024 4:44 am PDT by
Apple typically releases its new iPhone series around mid-September, which means we are about two months out from the launch of the iPhone 16. Like the iPhone 15 series, this year's lineup is expected to stick with four models – iPhone 16, iPhone 16 Plus, iPhone 16 Pro, and iPhone 16 Pro Max – although there are plenty of design differences and new features to take into account. To bring ...
Read Full Article129 comments
iphone 14 lineup

Cellebrite Unable to Unlock iPhones on iOS 17.4 or Later, Leak Reveals

Thursday July 18, 2024 4:18 am PDT by
Israel-based mobile forensics company Cellebrite is unable to unlock iPhones running iOS 17.4 or later, according to leaked documents verified by 404 Media. The documents provide a rare glimpse into the capabilities of the company's mobile forensics tools and highlight the ongoing security improvements in Apple's latest devices. The leaked "Cellebrite iOS Support Matrix" obtained by 404 Media...
Read Full Article66 comments
tinypod apple watch

TinyPod Turns Your Apple Watch Into an iPod

Wednesday July 17, 2024 3:18 pm PDT by
If you have an old Apple Watch and you're not sure what to do with it, a new product called TinyPod might be the answer. Priced at $79, the TinyPod is a silicone case with a built-in scroll wheel that houses the Apple Watch chassis. When an Apple Watch is placed inside the TinyPod, the click wheel on the case is able to be used to scroll through the Apple Watch interface. The feature works...
Read Full Article133 comments
bsod

Crowdstrike Says Global IT Outage Impacting Windows PCs, But Mac and Linux Hosts Not Affected

Friday July 19, 2024 3:12 am PDT by
A widespread system failure is currently affecting numerous Windows devices globally, causing critical boot failures across various industries, including banks, rail networks, airlines, retailers, broadcasters, healthcare, and many more sectors. The issue, manifesting as a Blue Screen of Death (BSOD), is preventing computers from starting up properly and forcing them into continuous recovery...
Read Full Article480 comments
Apple Watch Series 9

2024 Apple Watch Lineup: Key Changes We're Expecting

Tuesday July 16, 2024 7:59 am PDT by
Apple is seemingly planning a rework of the Apple Watch lineup for 2024, according to a range of reports from over the past year. Here's everything we know so far. Apple is expected to continue to offer three different Apple Watch models in five casing sizes, but the various display sizes will allegedly grow by up to 12% and the casings will get taller. Based on all of the latest rumors,...
Read Full Article37 comments

Top Rated Comments

JustAnExpat Avatar
JustAnExpat
7 months ago
My opinion:

1. It's a Bloomberg article. They wrote a piece called "The Big Hack" a few years ago that said China put a small device on everyone's computer. Apple (and everyone else) denied it, and Bloomberg never gave proof. See https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies . I take everything Bloomberg says with a grain of salt.

2. I think this is false information being released by the Chinese government to scare people into not using this service anymore to share bad information. If the Chinese government did find this violation, they would be keeping it as much of a secret as possible.
Score: 23 Votes (Like | Disagree)
0339327 Avatar
0339327
7 months ago
It boggles the mind why we are still so reliant on an evil regime for manufacturing and sales.

We need to find alternatives.
Score: 19 Votes (Like | Disagree)
jonnysods Avatar
jonnysods
7 months ago
I think the goverment has the people's best interests in mind, glad they cracked this so they can protect society from themselves, phew.
Score: 15 Votes (Like | Disagree)
heystu Avatar
heystu
7 months ago
Sorry am I being a bit thick here...by 'bragging' about it they've just tipped Apple off who will doubtlessly be deploying a fix for this very quickly. Maybe they should've just stayed quiet?
Score: 12 Votes (Like | Disagree)
ifxf Avatar
ifxf
7 months ago
Again the software vendors propensity to keep log files is a huge hole in their so called security. Apple needs to provide an option for users to disable log files.
Score: 9 Votes (Like | Disagree)
Guacamole Avatar
Guacamole
7 months ago
the regime that keeps on giving ....
Score: 8 Votes (Like | Disagree)
Read All Comments