Follow Slashdot blog updates by subscribing to our blog RSS feed

 


Forgot your password?
Close
typodupeerror
×
Android Security Cellphones Wireless Networking

Proof-of-Concept Android Trojan Uses Motion Sensors To Steal Passwords 105

Posted by Soulskill from the for-when-normal-keylogging-is-just-too-precise dept.
judgecorp writes "TapLogger, a proof-of-concept Trojan for Android developed by resarchers at Pennsylvania State University and IBM, uses information from the phone's motion sensor to deduce what keys the user has tapped (PDF), thus revealing otherwise-hidden information such as passwords and PINs."
This discussion has been archived. No new comments can be posted.

Proof-of-Concept Android Trojan Uses Motion Sensors To Steal Passwords More

Proof-of-Concept Android Trojan Uses Motion Sensors To Steal Passwords

Comments Filter:

  • Well, that's pretty clever (Score:5, Informative)

    by jfengel ( 409917 ) on Monday April 23, 2012 @03:21PM (#39774727) Homepage Journal

    According to TFA, the idea is actually somebody else's and previously published. This is an extension of the idea that uses a training phase, presumably a part of the Trojan where the user interacts with the phone for benign reasons (perhaps playing a game or entering data for a legitimate purpose) that it uses to calibrate the correlation between taps and the accelerometers.

    It's pretty clever. Presumably, it can be defeated by refusing to allow background apps to have access to the sensors, though I can imagine applications where you want to allow that kind of thing (pedometers, for example).

Slashdot Top Deals

Real Programmers don't eat quiche. They eat Twinkies and Szechwan food.

Close