Apple’s AirTags have just arrived on the market and are already a success. Despite being a technology and a concept that has existed for many years, the company transformed what was trivial, into a device with a huge network of users, the Find network.
According to tradition, these Apple systems always arouse the curiosity of security researchers. So, even with little time on the market, an AirTag has already been “hacked”.
Apple's AirTag has already been “hacked”
Apple launched the AirTag on April 20, at the spring event. The first started reaching users on the 30th of that month and changes, modifications and tests have already appeared that exploit the full potential of this location tag.
Now, a security investigator was able to “hack” the accessory, modifying its URL which is triggered by the NFC, when the device is in lost mode.
According to German security expert Stack Smashing, it is possible to make some changes and hack into the AirTag microcontroller. Then, in controlling this component, the “hacker” can change the URL that is displayed and it is even possible to modify elements of the object finder software.
Yesss!!! After hours of trying (and bricking 2 AirTags) I managed to break into the microcontroller of the AirTag! ????????????
/cc @colinoflynn @LennertWo pic.twitter.com/zGALc2S2Ph
— stacksmashing (@ghidraninja) May 8, 2021
According to the researcher, a microcontroller is an integrated circuit (IC) used to control devices usually through a microprocessor unit, memory and other peripherals. According to AllAboutCircuits, "these devices are optimized for embedded applications that require agile and responsive processing functionality and interaction with digital, analog or electromechanical components".
So this means that if the AirTag is unlocked the hacker can decide what the device wants to do. For example, the security investigator was able to modify his NFC URL. In the video, he compares a normal AirTag with a modified one.
Built a quick demo: AirTag with modified NFC URL ????
(Cables only used for power) pic.twitter.com/DrMIK49Tu0
— stacksmashing (@ghidraninja) May 8, 2021
As we can see, while the normal object finder opens the Find website, the modified object finder opens a website that has nothing to do with the Apple system.
The most relevant thing about this test is that whoever approaches a modified AirTag and uses NFC to find out who it belongs to, that tag can direct the user to a phishing or anything else.
Although it is possible, it is not something that is “simple to implement” and something that is “profitable”, taking into account the price of AirTags.
However, we have to wait to see if Apple will be able to implement a server-side locking mechanism to prevent a modified AirTag from gaining access to the Find network.
Read too:
-
