A newly discovered vulnerability in Apple's Find My network could allow hackers to covertly track almost any Bluetooth device, according to a recent study by researchers at George Mason University. The exploit, known as “nRootTag,” demonstrates how malicious actors could transform everyday devices—like phones and laptops—into virtual AirTags without the owner’s knowledge.
The Find My network, designed by Apple to help users locate lost items through devices like AirTags, operates by broadcasting Bluetooth signals to nearby Apple devices. These devices then anonymously relay location data back to the original owner. However, the researchers discovered a method to hijack this system by cracking cryptographic keys that manage the Bluetooth address rotation of AirTags.
Using a powerful setup with hundreds of GPUs, the researchers were able to generate these cryptographic keys, allowing them to bypass Apple’s anti-stalking measures. During their experiments, they tracked a laptop with an accuracy of just 10 feet and even monitored a bicycle's movement through a city. In another scenario, they demonstrated how a game console could reveal a person’s entire flight path, highlighting how this vulnerability could be used to track individuals' locations without their consent.
Apple was informed of the exploit in July 2024, and while the company acknowledged the researchers' findings, a concrete fix has yet to be implemented. The delay in addressing this issue is concerning, as researchers warn that even once a patch is available, not all users will update their devices immediately—potentially leaving millions vulnerable.
For now, experts recommend that users restrict Bluetooth access for unnecessary apps and stay vigilant about keeping their devices updated. As Apple works on a solution, the discovery of “nRootTag” serves as a stark reminder of the evolving threats to digital privacy and security in an increasingly connected world.
