Welcome back, my hacking friends. We use our smartphones every day, for business, socialization, and leisure. The number of iPhone users is increasing in dozens of millions every year, with a whopping 63.2 million users in 2014 alone.
That's a lot of users.
Here's the scary part. Sometimes when we send selfies, pictures of cute kittens, and pictures of our starbucks drinks, we can often mistakenly allow attackers to find our physical location.
We can examine a photo's metadata, and actually find a lot of fun stuff.
For this tutorial, we aren't going to need anything but Firefox, my favorite hacking browser.
We are going to install a plugin on Firefox by going to:
Tools > Add-Ons
And proceeding to search:
"Exif Viewer 2.00"
Install this plugin, and you can continue to the next step.
Let's look for an image that we can use as an example.
Note: Not all images will have locations attached to them
I searched "Pictures taken with iPhone" on google images, and found some decent examples there.
I like this squirrel. Where does he live? To use Exif Viewer, right click the image, and select "View Image Exif Data".
Here is what the Exif Viewer looks like:
As you can see, we have some useful information for recon right off the bat, like what model phone they are using to take the picture.
If we scroll all the way to the bottom of this page, we will see a link to the GPS location. This is what that will look like.
I clicked on the Google Maps link. It immediately showed me where the photo was taken.
Delete every photo you have!
They are coming for you!!!
Well, not exactly.
Just because I am so awesome, I will tell you how to protect yourself from this. All we need to do is change a setting.
Open up settings, then choose the "Privacy" setting. Tap on location services, and find "Camera" in the list of apps. Flip the switch next to "Camera" off.
Thank you for reading my tutorial! If you would like to leave kudos, it will be much appreciated! Special thanks to OTW for inspiring me to write the tutorial. Any questions would be greatly appreciated in the comments.