Warning: the way you tilt your smartphone ‘can give away passwords and pins’

The way you tilt your mobile while you’re using it could allow hackers to work out your pin numbers and passwords, according to new research.

Experts at Newcastle University analysed the movement of a smartphone as the screen was used. They say they cracked four-digit Android pins with 70% accuracy on the first guess and 100% by the fifth.

The team of cyber-experts claim tech companies know about the problem but can’t figure out what to do about it.

Dr Maryam Mehrnezhad, from the university’s school of computing science, said: “Most smartphones, tablets, and other wearables are now equipped with a multitude of sensors (gyroscope, rotation sensors, accelerometer, etc). But because mobile apps and websites don’t need to ask permission to access most of them, malicious programmes can covertly ‘listen in’ on your sensor data.”

The research suggests there’s a problem in the tech industry because of the number of different sensors used by competing companies.

Dr Mehrnezhad said: “On some browsers we found that if you open a page on your phone or tablet which hosts one of these malicious codes and then open [another one], then they can spy on every personal detail you enter.

And worse still, in some cases, unless you close them down completely, they can even spy on you when your phone is locked.

People were far more concerned about the camera and GPS than they were about the silent sensors.”

Maybe from now on you should use touch ID if your phone has it

The team said it was able to identify 25 different sensors which come as standard on most devices.

The researchers found that everything you do – from clicking, scrolling and holding to tapping – led to people holding their phone in a unique way. So on a known webpage, the team was able to work out which part of the page the user was clicking on, and what they were typing, by the way it was tilted.

They said they’d told all the major tech companies, like Google and Apple, about the risks but no one has been able to come up with an answer so far.

[Source: the BBC]

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s