Just as guns don’t kill people (people kill people), drones aren’t all bad – but they can be used to do bad things. Like dropping bombs on innocent people. CNN Money reports, hackers can use them to swoop in and swipe sensitive person information entered into your smartphone from high in the sky.
Developed by Sensepost Research Labs security researchers Glenn Wilkinson and Daniel Cuthbert, the dastardly piece of distributed tracking and profiling framework technology at work here is called Snoopy, and it can be loaded into anything from another mobile phone
Anytime you use a Wi-Fi network, your smartphone or tablet remembers that network, so it can more easily connect the next time you’re in range. It does this by peering each network to see if it’s available. Snoopy exploits this feature by identifying a previously used network, then it pretends to be that network, so your smartphone or tablet connects to it, and you are none the wiser.
After stopping the individual media access control address of a phone, Snoopy is capable of seeing and recording data of sensitive nature such as location, username, passwords or even information about a credit card that is more often accessed by accounts or websites.
While giving an interview to CNN, Snoopy revealed multiple users of smartphones about how they were attacked by the drone, and within the space of an hour gathered the sensitive information and real time GPS location of about 150 smartphones. It also collected their Yahoo, Amazon and PayPal accounts created for a testing purpose.