Surveilling the Masses with Wi-Fi Positioning Systems

Wi-Fi Positioning Systems are used by modern mobile operating systems to geolocate themselves without the use of GPS. Both Google and Apple, for instance, run Wi-Fi Positioning Systems for Android and iOS devices to obtain their own location using nearby Wi-Fi access points as landmarks.

In this work, we show that Apple’s Wi-Fi Positioning System represents a global threat to the privacy of hundreds of millions of people. When iOS devices need to geolocate themselves using nearby Wi-Fi landmarks, they transmit a list of hardware identifiers to Apple and receive the geolocations of those access points in return. Unfortunately, this process can be replicated by an unprivileged adversary, who can recreate a copy of Apple’s Wi-Fi geolocation database by requesting the locations of access points around the world with no prior knowledge.

To make matters worse, we demonstrate that by repeatedly querying Apple’s Wi-Fi Positioning System for the same identifiers, we can detect Wi-Fi router movement over time. In our data, we see evidence of home relocations, family vacations, and the aftermath of natural disasters like the 2023 Maui wildfires. More disturbingly, we also observe troop and refugee movements into and out of the Ukraine war and the impact of the war in Gaza.

We conclude by detailing our efforts at responsible disclosure, and offer a number of suggestions for limiting Wi-Fi Positioning Systems’ effects on user privacy in the future.

By:
Erik Rye | Researcher, University of Maryland

Full Abstract and Presentation Materials:
https://www.blackhat.com/us-24/briefings/schedule/#surveilling-the-masses-with-wi-fi-positioning-systems-38430Black HatRead More