-
Team TechTree
07:53 08th Jul, 2016
Beware! Your Smartwatch Can Reveal Your ATM PIN | TechTree.com
Beware! Your Smartwatch Can Reveal Your ATM PIN
And here’s why you may want to take it off…
Cyber criminals can easily exploit wearable devices such as smartwatches and fitness trackers to steal sensitive information like your ATM PIN or passwords for electronic door locks, according to a new research.
Researchers at Binghamton University have published the research paper titled "Friend or Foe?: Your Wearable Devices Reveal Your Personal PIN" reveal hackers who know what they’re doing, it’s surprisingly easy to steal access codes.
"Wearable devices can be exploited. Attackers can reproduce the trajectories of the user's hand and recover secret key entries to ATM cash machines, electronic door locks and keypad-controlled enterprise servers," said Yan Wang from Binghamton University in the US.
The researchers combined data from embedded sensors in wearable technologies such as smartwatches and fitness trackers, along with a computer algorithm to crack private PINs and passwords with 80 percent accuracy on the first try and more than 90 percent accuracy after three efforts.
The team conducted 5,000 key-entry tests on three key-based security systems, including an ATM, with 20 adults wearing a variety of technologies over 11 months. They were able to record millimetre-level information of fine-grained hand movements from accelerometers, gyroscopes and magnetometres inside the wearable technologies regardless of a hand’s pose.
Those measurements lead to distance and direction estimations between consecutive keystrokes, which the team’s “Backward PIN-sequence Inference Algorithm” used to break codes with alarming accuracy without context clues about the keypad. “The threat is real, although the approach is sophisticated,” Wang said in the paper presented at the “11th ACM on Asia Conference on Computer and Communications Security” conference in China recently.
The researchers did not give a solution for the problem but suggest that developers “inject a certain type of noise to data so it cannot be used to derive fine-grained hand movements, while still being effective for fitness tracking purposes such as activity recognition or step counts”.
Wang co-authored the study along with Chen Wang from the Stevens Institute of Technology in New Jersey.
(With inputs from the agencies)
TAGS: Smartwatches, Cybercriminals, ATM PIN
News Corner
- DRIFE Begins Operations in Namma Bengaluru
- Sevenaire launches ‘NEPTUNE’ – 24W Portable Speaker with RGB LED Lights
- Inbase launches ‘Urban Q1 Pro’ TWS Earbuds with Smart Touch control in India
- Airtel announces Rs 6000 cashback on purchase of smartphones from leading brands
- 78% of Indians are saving to spend during the festive season and 72% will splurge on gadgets & electronics
- 5 Tips For Buying A TV This Festive Season
- Facebook launches its largest creator education program in India
- 5 educational tech toys for young and aspiring engineers
- Mid-range smartphones emerge as customer favourites this festive season, reveals Amazon survey
- COLORFUL Launches Onebot M24A1 AIO PC for Professionals
TECHTREE