Jump to Main ContentJump to Primary Navigation
Top

Hackers could spy on your phone via your battery

battery1.jpg

Slow to charge, quick to drain - phone batteries are awful. But their feeble power-handling abilities might not be their worst fault.

A group of phone security researchers have uncovered a flaw in the way that phone batteries communicate with websites that could allow someone to track your phone.

Titled The Leaking Battery (very good), the research paper demonstrates that a privacy risk exists in websites that use HTML5 - a programming language used to create mobile-friendly sites. A perk of HTML5 is its ability to communicate with a phone and it's battery life: if a mobile is reporting a low charge, the website will cut down on some battery-sapping features. 

So far, so clever.

However, the researchers claim this 'Battery Status API' unwittingly allows anyone with access to the data collected by the HTML5 website to potentially track a person's browsing habits. Without asking the user's permission, the website script gain's two pieces of information: how much charge is left on the user's phone and how long it would take the drain the battery in full.

Given the very specific nature of these two numbers, the researchers report, they act as an 'ID number' that could then be tracked around the web. 

This might seem like nothing but it would mean that your entire browsing habits could be tracked. Every single click. 

Looking at porn? They know. Spending a lot of time on debt websites? They know. All of your interests, there for the taking. Opening up the opportunities for, at best, targeted advertising and, at worst, potential (and incredible tech savvy) blackmailers.

Hacker

"Ha! I can follow their every browsing move! The innocent fools" - hacker

"The analysis of Web standards, APIs and their implementations can reveal unexpected Web privacy problems by studying the information exposed to Web pages," say the report researchers - Lukasz Olejnik, Gunes Acar, Claude Castelluccia and Claudia Diaz. "The complex and sizable nature of the new Web APIs and their deeper integration with devices make it hard to defend against such threats."

Sure, a 'hacker' with access to this information won't be able to pinpoint your exact location or pinch your bank details - but that isn't the point the researchers are trying to make. In their eyes, HTML5 websites are breaching your privacy without asking your permission, which isn't good enough. 

For instance, we've been watching your mobile movements ever since you logged on to this story, and we're going to enjoy tracking your reads all day.

We haven't. 

Or have we?

No.

[Via: The Independent]

(Images: Shutterstock)

Related

dot2.jpg

This is the first smartwatch for the blind

cable2.jpg

How To Stop Your iPhone Charger From Breaking So Easily

bmw.jpg

Apple could partner with BMW to build car

samsung2.jpg

Leaked Images Of Samsung's New 'Bigger' Smartphone

google.jpg

Google Will Now Tell You When To Avoid A Busy Bar

dogbirthday.jpg

Facebook invents the laziest-ever way to say Happy Birthday

Comments

More

We might be about to get smartphones that charge fully in five minutes

An Israeli start-up claims it's going to go into production next year

by Tom Mendelsohn
15 May 2017

5 of the best fidget toys on the market right now

Tackle your knuckle cracking head on

by Matt Tate
10 May 2017

Some Italians have created a phone cover that also makes espresso

No, we don't know why either

by Tom Mendelsohn
08 May 2017

New app will rebalance the London rental market in favour of landlords

Finally, the capital's hard-up property owners will get their due with Rentberry

by Tom Mendelsohn
26 Apr 2017

This knife-toting robot playing stabby hand will make you nervous

I for one welcome our new robot overlords

by Tom Mendelsohn
25 Apr 2017

Now you can turn your iPhone into a retro mac

For the man who has everything

by Tom Mendelsohn
21 Apr 2017

The best turntables of 2017

How the tables have turned

by David Cornish
20 Apr 2017

The Tamagotchi is back

Great news for fans of neglecting responsibilities and watching tiny creatures literally shit themselves to death!

by Emily Reynolds
11 Apr 2017

Self-healing smartphone screens could exist by 2020

Could it be curtains for shady smartphone repair stalls across Britain?

by Tom Mendelsohn
05 Apr 2017

The Samsung Galaxy S8 is being released in less than a month

This is the Korean giant's first major new release since all that embarrassment with exploding Galaxy Note S7s...

by Tom Mendelsohn
29 Mar 2017