Protocol Prying: zero-click vulns in AirDrop and Quick Share
Researchers discovered zero-click vulnerabilities in Apple's AirDrop and Google's Quick Share (formerly Android Nearby Share) protocols. The flaws allow attackers to trigger file transfers without user interaction, potentially leading to data exposure or arbitrary code execution on targeted devices.
Background
- **AirDrop** (Apple) and **Quick Share** (Samsung/Android) are proximity-based file-sharing services that let users wirelessly send files to nearby devices.
- Researchers have found **zero-click vulnerabilities** in both protocols — meaning an attacker can exploit them without the target tapping or clicking anything, simply by being in wireless range.
- "Protocol prying" refers to the technique of probing the underlying protocol (e.g., Bluetooth + Wi-Fi Direct) to extract information or trigger bugs before the user even accepts a transfer.
- Affected ecosystems: billions of Apple and Android devices. Exploits could allow file injection, data theft, or device compromise without user awareness.
- This paper (arXiv:2606.26967) details the technical findings; previous research in this area includes the "BlueBorne" and "AirDrop flaws" disclosures from recent years.