AirDrops, Not Air Flops

A new attack is popping up if you have an Apple product, like an iPhone, iPad, or Mac/MacBook. AirDrop threats are on the rise in schools all across the country.

What is an AirDrop?
Simply put, it is wireless sharing between two physically close devices (within 30-40 feet) on the same operating system: iOS to iOS or iOS to macOS (This feature is not available on Windows devices). You can send all kinds of files, like texts, images, playlists, and locations, without size limits on the file.

So, what are the risks with AirDrop? The risks come in a few different ways. First, the AirDrop could contain malware. This type of attack is very similar to phishing. Anyone in your vicinity could send you a file, and if you accept it, you could put yourself in a risky situation. Imagine being at an event where dozens or even hundreds of people are around you. You get an AirDrop request, don’t think anything of it, and then accept it.

But, aren’t Apple products more secure? Yes, Apple has a reputation for very secure products that tend to pick up on things like malware, Still, older, unsupported devices, or plain ol’ bugs in the system could allow someone within the range of an AirDrop user to silently install a malicious app on a target Apple device by sending the file via AirDrop.

But how would they get my data?
AirDrop tries to verify if a contact is safe by matching the sender to your email or phone contacts. However, a savvy attacker can learn the phone numbers and email addresses of AirDrop users. They would just need a Wi-Fi-capable device and physical proximity to someone that opens the sharing pane on an iOS or macOS device. After some nefarious tactics, they’re in. They could take all of those steps… or attack a much easier target: phones configured to be visible to everyone.

Ok, so now, we know not to accept AirDrop requests from people we do not know. What are some other risks?
School districts across the country are seeing a familiar attack appear in a new way. Attackers use a similar phishing/spam model to send anonymous threats or inappropriate images to harass or bully teachers and classmates through AirDrop. Schools have gone into lockdown and even closure because of these threats.

In Texas (Texas Penal Code 33.07), this can be classified as a Class A Misdemeanor or a 3rd Degree Felony, depending on the severity. There are a number of other laws that would come into play as well. So, please don’t try this as a prank. It won’t be funny.

What actions can I take?

  1. Like with texts and emails, don’t accept attachments or links from contacts you do not know.
  2. Report any incidents of AirDrop harassment, threats, or bullying to your campus administrator immediately. Provide them with as many details as you can.
  3. Lastly, secure your phone only to accept AirDrop requests from your contacts by disabling AirDrop discovery in the system settings and by refraining from opening the sharing menu.

Here is a quick way to do that.
To change the setting for the Airdrop feature:

  • Go to SETTINGS
  • Scroll down and select GENERAL
  • Tap AIRDROP
  • Select RECEIVING OFF or CONTACTS ONLY

Have fun at your events, knowing you’re safer from AirDrop attacks!

GG,
-Pete