Hack Exploits Google Street View to Find Victims

August 4, 2010 | Filed under: Cloud | Posted by:

A security researcher has developed an attack which can be used for stalking, using JavaScript and geolocation information from Google to determine a victim’s location.

During a presentation at the BlackHat conference last week, titled “How I Met Your Girlfriend,” Samy Kamkar discussed the new method in detail. It works as follows:

1) the hacker lures the victim to a website which uses JavaScript to steal the router’s Media Access Control address and report the unique identifier to Kamkar

2) the hacker then puts the stolen MAC address into Google Location Services, which gives him an address accurate to a few hundred feet.

“Their web browser is compelling this exploit for you,” Kamkar said. “Pretty cool.”

The slides from the presentation are here

Related posts:

  1. Researchers Find Way to Hack Cars
  2. ATM Hacking Presentation Canceled Following Vendor Legal Pressures
  3. Google Releases Security Scanner
  4. Google Adds Security Feature
  5. Botnet Defrauds Google

One Response to Hack Exploits Google Street View to Find Victims

  1. Pingback: The Privacy Blog » Blog Archive » Hack Exploits Google Street View to Find Victims - The New New Internet

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>