Hackers can crack your password based on how you move your phone while typing, study claims
by Milen Yanachkov / Apr 11, 2017, 8:29 AM
A study by Newcastle University claims that hackers can crack your password or PIN code based on the movement of your smartphone while typing. Weird as it may seem, the experts say that during the study, they've managed to crack four-digit PINs with 70% accuracy on the first try, and have them guessed by the fifth attempt, relying on nothing more than data collected from motion and orientation sensors. The scientific team also claims that tech companies are aware of the problem, but have no solution to it.
So, how is this possible? Well, apparently by secretly collecting data from the phone's gyroscope.
Dr Maryam Mehrnezhad, lead of the Newcastle University study, says that this security flaw is caused by the fact that most "mobile apps and websites don't need to ask permission to access most of the [sensors]," which allows “malicious programmes” to listen in and collect data from the sensors.
But how does it work, exactly? Well, in a similar way to how mouse tracking can be used to learn more about what you're doing on your PC, the orientation sensors in your phone can be used to tell whether you are scrolling, long-pressing, or tapping your screen, and most worryingly perhaps, where you are tapping on the screen.
"On some browsers we found that if you open a page on your phone or tablet which hosts one of these malicious codes and then open [another one], then they can spy on every personal detail you enter," says Dr Mehrnezhad. "And worse still, in some cases, unless you close them down completely, they can even spy on you when your phone is locked."
And you were worried about the front-facing camera!
The Newcastle University scientific team has reported all its findings to major tech companies, but there hasn't been any meaningful response so far.
Well, we guess the only logical solution to the problem at this point would be to become this guy:
Or, you know, be perfectly still while typing. Perfectly. Still.
Posts: 14967; Member since: Sep 25, 2013
With FPS, there wont be a passcode to hack..lol You can easily defeat such a hack. Never use your passcode in public. Buy a phone with a FPS and always use it and actually set it up. Use alternative methods like the pattern or some other means. What happens when people don't move their phone to enter passcode?! The whole thing is dumb. Because they would still need your phone. Even if they know the passcode it wont matter if they never have your phone.
posted on Apr 11, 2017, 9:05 AM 1
Posts: 423; Member since: Mar 16, 2016
I just look at it and the iris scanner does it for me.
posted on Apr 11, 2017, 9:18 AM 1
Posts: 30833; Member since: Feb 05, 2011
On my Note 7, I used the iris scanner more than 90% of the time. It even worked in the dark, contrary to popular belief.
posted on Apr 11, 2017, 9:26 AM 5
Posts: 1131; Member since: Sep 28, 2016
If someone really wanted to, they can hack any smartphone. The question is are any of us here really that important for hackers to waste their time on? In most cases the answer is no. My automechanic teacher said he can break into any car if he really wanted to. The same probably applies to smartphones.
posted on Apr 11, 2017, 1:50 PM 0
Posts: 5029; Member since: Mar 30, 2015
Good luck i only enter my password on my phone when i boot it up Otherwise i use my finger print scanner.
posted on Apr 11, 2017, 2:28 PM 1
Posts: 10; Member since: Jul 14, 2014
Me too. But then I started to think, that now they will have to take your iphone and your thumb too. MMMM and those of the Note 5, they will have to take your eyeball too. I think it was a lot simpler when we all used the Nokias (like the 3310).
posted on Apr 11, 2017, 6:27 PM 0
Send a warning to post author
Send a warning to Selected user.
The user has 0 warnings currently.
Next warning will result in ban!
Ban user and delete all posts
Message to PhoneArena moderator (optional):