29-05-2021 by MNP
StackSmashing announced on Twitter that it had succeeded in bypassing Apple's protection systems and exploited a flaw in Airtags, geolocation modules launched just a few weeks ago.
Following a manipulation, it is possible for hackers to modify the NFC address of small trackers and the functionalities of the diverted module for unintended uses, in particular the monitoring of people remotely or to carry out various extended hacking operations.
It would thus be possible to force a user's AirTag to send him a notification with a URL that would replace the opening of Find My, then ask him to communicate his identifiers in order to retrieve them.
Now, the ball is in Apple's court, it remains to be seen whether it is possible for the brand to correct the shooting by plugging the exploited flaw.
airtags, apple, iphone, mac, ipad, hacked