Last Updated on 2023-04-25 , 2:14 pm
You don’t click on unsafe emails. And you’re always stingy about giving permissions to apps for access to your devices.
Think you’re safe? Think again.
Because, according to NTU researchers, there’s a huge security hole in smartphone security. One that hasn’t been resolved.
For those who own a smartphone, I assume that’s all of you reading right now, here’s what you need to know.
Hackers Can Gather Data From Your Phone Sensors & Guess Your PIN Within 3 Tries
And we’re not talking about some measly number like 75% of the time. It’s more like 99.5% accuracy.
Think of how many ibanking and other important apps require PIN number passcodes.
Now you realise the danger, right?
NTU researchers built a custom app which takes comprehensive data from a smartphone’s sensor data.
They got three people to key in 210 random 4-number PINs on the smartphone.
The app recorded factors like how the phone was tilted and how much light is blocked by the thumb or fingers.
Then, the app’s deep-learning algorithm assigned different levels of importance to the numbers over time.
These are all collected with the phone’s accelerometer, gyroscope, magnetometer, proximity sensor, barometer, and ambient light sensor.
But here’s the really bad news
If you thought that was the worst of it, think again.
According to the researchers, all apps collect sensor data like these from their users and they require virtually no permission to do so.
i.e. You have virtually no defence against them.
Advertisements
This means that you might not even know you’ve downloaded a malicious app, at least not until the app’s deep-learning algorithm has finished its job.
That’s when the attackers will come in and rob you blind.
So what can you do?
For a start, go for passcodes that are longer than 4-number PINs. Things like you’llneverguessmypassword92811 or something along that line.
In addition, try to 2FA your device with other authentication methods like one-time passwords (OTP) or facial recognition or fingerprint thingy or whatever security thingy your phone has.
Better be safe than sorry, aye?
Advertisements
Read Also:
- New Feature in ERP 2.0 Will Allow Users to Temporarily “Shut Down” CashCard
- Sentosa Sky Lantern Festival Attendees Can Get Full Refund If They File Reports With Case by 31 March
- Telegram is Now Making Money & Might Even Have an IPO
- SBS Transit Extends 22 Bus Services & Train Services on Hari Raya Eve (9 April 2024)
- Everything About Ipoh White Coffee, Which is Listed as the #10 Best Coffee in the World
Advertisements