Hackers can steal PINs, passwords and other personal information by analyzing data from different sensors inside the smartphone.
This discovery was made by experts in the field of cybersecurity from Newcastle University. They managed to crack a four-digit PIN with the help of accelerometer, gyro and other sensors. Researchers immediately notified all major smartphone manufacturers about it. It turns out that Apple responded urgently to this message and closed the vulnerability in iOS 9.3.
"Because mobile applications and Web sites do not need to request permission to access most of them, malicious programs can secretly collect data from these sensors and use them to obtain a wide range of confidential information about you, such as the time of a phone call, touch screen, PIN Codes and passwords, "said Dr. Maryam Mehnejad, head of the research team at Newcastle University.
The researchers found that if you opened a website on your smartphone or tablet with a site containing malicious code and then went to the online banking of your online store without closing the tab with the previous site, the attackers could by analyzing the data from the sensors inside the mobile device find out your passwords And personal data.
Google also confirmed that that they are aware of this vulnerability, but a solution of the problem has not found yet.