MiFi Attack Exploits GPS To Reveal User's Location 62
An anonymous reader writes "Security researcher Adam Baldwin has identified that the Sprint and Verizon MiFi devices are vulnerable to a multitude of attacks. Combining these attacks together, an attacker can gain the GPS location of the MiFi device without the user becoming immediately aware. The attack can be successfully executed without authentication and even if the GPS has been disabled by the administrator." There's a video, but a handy text summary, too. Upshot: "Any MiFi user that visits a specially crafted page will give up their GPS location to the attacker."
Why does it have a GPS? (Score:4, Insightful)
Bad title (Score:3, Insightful)
Publicity Stunt? (Score:3, Insightful)
Here's one from the conspiracy theory file:
Since the MiFi is such a novel concept, people might not think it includes anything not related to data connections. By making this mistake and it landing on Slashdot and such, it's advertising the GPS... plus giving notice so nobody can sue them and claim they didn't know they were carrying a device that would reveal their location.
Re:Why does it have a GPS? (Score:3, Insightful)
> Because you're on a cellular network and the company providing service wants
> to know where its users are using them so they can plan the network.
They know what cells you are using and the signal strength. That's all they need.
Re:Why does it have a GPS? (Score:2, Insightful)
if the phone is only picking up the signal from one tower you can eliminate any side of the tower where another tower is close by, as you would expect to have more than one signal. so unless the tower is completely isolated you can have a pretty good idea where they are, at least what direction.
Re:Why does it have a GPS? (Score:4, Insightful)
No, the fact that third parties *found* the back door is direct evidence of poor security design. The fact that the backdoor was there is at least as likely to be an intentional measure for law enforcement purposes as it is to be a mistake. Odds are, when they "fix" this bug, the backdoor will still be there, just hidden a little better.