Security has always been a major concern in the technology world. However, a recently discovered vulnerability takes these concerns to a whole new level. Researchers from George Mason University have revealed that they can use Apple’s Find My network to turn any Bluetooth device into a tracking device without the owner knowing. This could seriously threaten the privacy of millions of users. Here are the details…

Can Apple’s Find My network be exploited?

Apple’s Find My network is a system developed to find lost or stolen devices. Devices like AirTag can determine their location via Apple devices in the vicinity by sending Bluetooth signals. However, researchers discovered that this system is not limited to official Apple accessories like AirTag, and that any Bluetooth device can be tracked.

The discovered vulnerability is made possible by an attack method called “nRootTag”. Normally, AirTags constantly change their Bluetooth addresses with encrypted keys to protect privacy. However, attackers can quickly decipher these keys using powerful GPUs and track the location of any device using the Find My network. Moreover, this does not require any special software or administrator rights.

Using this method, researchers managed to determine the location of a laptop with a precision of 3 meters. Moreover, they tracked the movement route of a bicycle and even deduced the flight path of a person. This could allow malicious people to track their potential targets remotely.

The researchers reported this vulnerability to Apple in July 2024. The technology giant thanked the researchers but has not yet made a clear statement on how it will solve this problem. According to experts, it can take years to completely fix such a vulnerability. In the meantime, users are advised to disable unnecessary Bluetooth connections and keep their devices up to date.

So what do you think about this issue? You can share your opinions with us in the Comments section below.