Security researcher successfully hacks and jailbreaks an Apple AirTag

The Apple AirTag has been jailbroken. That didn't take long. (Image via Apple w/ edits)

A German security researcher who goes by the alias "stacksmashing" posted a YouTube video detailing how he was able to dump the firmware of an Apple AirTag. Furthermore, he was able to inject a custom firmware that changed the AirTag's "Lost Mode" function. This could open the door to more malicious jailbreaks of AirTags in the future.

Sam Medley, Published 05/12/2021 🇵🇹 🇫🇷 ...

Apple’s new AirTags are an easily accessible tool for keeping track of things that have a nasty habit of getting lost, but the devices have already been criticized for potential privacy concerns. Those criticisms may grow stronger thanks to a German hacker who recently hacked into an AirTag, dumped the device’s firmware, and successfully jailbroke the device.

German security research stacksmashing published a video on YouTube today highlighting the hack. Essentially, stacksmashing used voltage-based fault injection, more commonly known as “glitching,” to trick the AirTag into a debug mode. By attaching a Raspberry Pi Pico (which costs about US$4) and an n-channel MOSFET to a capacitor connected directly to the AirTag’s CPU core, he successfully interrupted the CPU’s timing and accessed the device’s firmware via a special debugger.

After dumping the firmware, stacksmashing was able to reflash the AirTag with a custom firmware that changed the URL sent by the AirTag when it is NFC scanned. Normally, an AirTag will direct the scanner to an Apple-owned website that gives the owner’s phone number and a customizable message. However, stacksmashing was able to force the AirTag to (of course) route a scanner to the YouTube video of Rick Astley’s meme-famous song Never Gonna Give You Up.

An interesting point of the hack is that once he obtained one device’s firmware, stacksmashing was able to reflash any other AirTag and inject whatever firmware he pleased. In other words, the injection method theoretically works for all AirTags on the market at this point.

While this experiment is an interesting study into the vulnerabilities of Apple AirTags, it opens the door to potentially malicious uses. An AirTag’s alert systems could be disabled, or the device could be reflashed to direct a scanner toward a malicious website. It seems that, as with practically all of our digital devices, the electronics in our pockets are not as secure as we think they are.

What are your thoughts on the new AirTag jailbreak? Let us know in the comments below.

Buy an Apple AirTag (single or 4 pack) at Amazon.

Source(s)

stacksmashing on YouTube

Apple iPhone 15 Pro Max flagship (Source: Apple)

iOS 17.0.1, iPadOS 17.0.1, and macOS 13.6 bring critical security patches 09/25/2023

Tile partners with Intel on findable Lenovo or MSI laptops and Dell on a trackable stylus with the longest battery life 04/02/2022

Apple's AirTags have developed an unwanted reputation. (Source: Apple)

Apple's latest "advancements" to the AirTag and FindMy systems are touted to address the rising "unwanted tracking" phenomenon 02/13/2022

Canadian police officers have found hidden AirTags on stolen cars, indicating they were used to track the location of the expensive vehicles (Image: Daniel Romero)

Car thieves are using Apple AirTags to track and then steal expensive vehicles, iPhone users should be aware of a certain warning notification 12/03/2021

Tile is about to become a part of Life360. (Source: Life360)

Tile is to become part of Life360 as part of a US$200+ million deal 11/24/2021

iPhone with USB-C bids for US$86,001 on eBay. (Image Source: geeken on eBay)

World's first iPhone with USB-C sells for whopping US$86,001 on eBay but is unsuitable as a daily driver 11/13/2021

A PS5 jailbreak could be on the cards if hackers manage to get through all the security layers that are in place. (Image source: Sony/Unsplash - edited)

PlayStation 5 jailbreak seems inevitable as double hack reveals PS5 root keys and debug settings 11/08/2021

AirPods 2 case: possibly the same, but only from the front. (Source: MacRumors)

Next-gen AirPods Pro will upgrade to a case with Apple Find My integration and more 10/24/2021

Twitch hit by massive hack that reveals its entire source code and more 10/06/2021

Tile announces a new investment. (Source: Tile)

Tile acquires new investment funding to the tune of US$40 million 09/16/2021

Apple AirTags are proving a useful tool for many, it seems. (Image source: Nikita Ognev)

Apple AirTags used to demonstrate the illegal disposal of homeless people's property in Portland 08/06/2021

Google might be about to enhance Find My Device. (Source: XDA)

Google is working on cloning Apple's Find My service 06/19/2021

The RockYou2021 compilation is a single 100 GB file. (Image source: Markus Spiske)

RockYou2021 compilation leaks between 8.4 billion and 82 billion passwords 06/09/2021

Smart tags, smart tags everywhere. (Source: Weibo)

OnePlus will include smart tags in its next round of product launches 06/03/2021

The personal data of over 100 million Android users may have been exposed due to poor data management practices. (Image via Android with edits)

Poor data management put 100 million Android users at risk 05/25/2021

The new SOUNDFORM Connect adapter. (Source: Belkin)

Belkin's new SOUNDFORM Connect can upgrade older speakers with Apple AirPlay 2 05/21/2021

Apple software chief Craig Federighi confirmed Mac software vulnerability mid-May 2021 (Source: Wccftech)

It's official: The Mac has a security problem 05/20/2021

The new C8C security camera. (Source: EZVIZ)

EZVIZ launches its first pan/tilt outdoor Wi-Fi home security camera 05/19/2021

The first MacBook Pro with a mini-LED display may not arrive until 2022. (Image source: MacRumors)

Apple MacBook Pro mass production with mini-LED displays may be delayed until Q1 2022 05/19/2021

The next Mac Pro will resemble a smaller version of the current model. (Image source: Apple)

Apple is reputedly developing a Mac Pro with up to 40 CPU and 128 GPU cores; new Mac mini with powerful SoC being worked on too 05/18/2021

Apple is supposedly planning to release three new MacBook Pro models, starting this summer with 14-inch and 16-inch variants. (Image source: MacRumors)

New Apple MacBook Pro 13, MacBook Pro 14 and MacBook Pro 16 details emerge 05/18/2021

The Beats Studio Buds will be available in at least three colours. (Image source: Steve Moser)

Beats Studio Buds leak in an apparent reversal for the Beats brand 05/17/2021

Spigen's latest AirTag holders. (Source: Spigen)

Spigen announces new AirTag accessories in some signature styles and designs 05/08/2021

The Tile Network will dramatically expand on June 14 when its partnership with Amazon Sidewalk goes live. (Image: Amazon)

Tile fights back against AirTag with Amazon Sidewalk support, greatly expands its Tile Network in the process 05/08/2021

A modder has converted an Apple AirTag so it fits a wallet. (Image: 9to5Mac)

Modder repurposes an Apple AirTag to better fit a wallet 05/07/2021

An AirTag gets torn down. (Source: YouTube)

Apple's AirTags might not stay as shiny as they look right now throughout their working lives 05/04/2021

The Apple AirTag has been removed from the shelves of Australia retailer Officeworks over child safety concerns. (Image: Apple)

Apple's AirTag raises child safety concerns over user removable batteries 05/04/2021

Apple Watches can now unlock their linked iPhones. (Source: Apple)

The latest iOS and watchOS updates finally add a mask-compatible unlocking option 04/27/2021

Oppo could be working on an in-house object tracker to rival Airtags

Oppo reportedly working on its own version of Airtags 04/22/2021

Apple's new object tracker, the AirTag, is now official

Apple AirTag will let you find your lost keys for US$29 a pop 04/20/2021

Apple's Find My network can now be used to track non-Apple products like e-bikes, headphones, and location tags. (Image via Apple)

Apples opens its Find My network to third-party companies, allowing your iPhone, iPad, or Mac to locate non-Apple things 04/08/2021

Apple may finally release iPhones with high-refresh-rate displays this year. (Image source: EverythingApplePro)

Apple iPhone 13 series leak reveals 120 Hz LTPO displays, multiple camera improvements, and new colour and storage options; AirTags to launch for US$39 03/26/2021

We may be on the verge of new AirPods and iPad Pros arriving. (Image source: Alexandar Todov)

Apple AirTags reputedly ready for release at March 23 hardware event, as are revised iPad Pros, AirPods and Apple TV; mini LED display only for new 12.9-inch iPad Pro 03/09/2021

Read all 1 comments / answer

Loading Comments

Comment on this article

Small but powerful: The Amazfit GTS...

Sony WF-1000XM4 high-resolution mar...

Sam Medley - Senior Tech Writer - 1344 articles published on Notebookcheck since 2016

I've been a computer geek my entire life. After graduating college with a degree in Mathematics, I worked in finance and banking a few years before taking a job as a database administrator. I started working with Notebookcheck in October of 2016 and have enjoyed writing news and reviews. I've also written for other outlets including UltrabookReview and GeeksWorldWide, focusing on consumer guidance and video gaming. My areas of interest include the business side of technology, retro gaming, Linux, and innovative gadgets. When I'm not writing on electronics or tinkering with a device, I'm either outside with my family, enjoying a decade-old video game, or playing drums or piano.

Please share our article, every link counts!

> Expert Reviews and News on Laptops, Smartphones and Tech Innovations > News > News Archive > Newsarchive 2021 05 > Security researcher successfully hacks and jailbreaks an Apple AirTag

Sam Medley, 2021-05-12 (Update: 2021-05-12)

Security researcher successfully hacks and jailbreaks an Apple AirTag

Source(s)

Related Articles