In other words, I send you a message and then time how long it takes until I see the indicator that you have received (not read) the message. The trick lies in measuring the time taken for the attacker to receive the message delivery status notification on a message sent to the target.īecause mobile internet networks and IM app server infrastructure have specific physical characteristics that result in standard signal pathways, these notifications have predictable delays based on the user’s position. While the method sounds imprecise, tests showed that it provided greater than 80% reliability …Ī team of researchers has found that it’s possible to infer the locations of users of popular instant messenger apps with an accuracy that surpasses 80% by launching a specially crafted timing attack. Security researchers have found a surprising method for exposing location data in otherwise secure messaging apps WhatsApp, Signal, and Threema.
0 kommentar(er)
