Smartwatches can do everything in daily life, from tracking your heart rate to making phone calls and at the same time showing the function of time. There are many well-known brands of gadgets that launch smartwatch models, whether specifically for womens watch, men watch, or unisex. But did you know that the smartwatch can also be used to recognize what you type?
Wearable devices, such as health trackers and smartwatches, from the very beginning, have raised concerns about safety. This is mainly due to the data they collect and transfer to the cloud, which may end up in the wrong hands or be sold to the highest bidder.
Fitness tracker vendors do everything they can to convince users that their data is safe, but at the same time, they also sell these smart bracelets en masse to the company. For example, companies can use this wearable device to track the health of their employees, which is certainly not a good way to handle employee’s data.
In reality, this is not the worst thing about fitness trackers and smartwatches that deserve attention. A Senior Malware Analyst found that it was very easy to connect a smartphone to almost any fitness tracker, which was also connected to other devices, so he concluded his research with a relatively positive note.
By hacking my health bracelet, cybercriminals cannot get access to all user data because these data are not stored on a health bracelet or a smartphone – the official application regularly sends information from the health bracelet to the cloud.
However, a student pointed out that cybercriminals do not need these data to hack users’ wearable devices. He showed that after gaining access to the smartwatch, one can observe the body’s movements of the device owner and perform the reverse-engineering method into the symbols that they will type on the numeric keypad.
This research shows that someone can use a hacked smartwatch to learn what we type in the Numpad. And this is certainly bad for the user because this lump could have become a PIN-pad at an ATM or card reader device at a store, and now the cybercriminal knows the PIN code of your credit card.
Or a lump sum could be a lock screen on your smartphone – once the cybercriminal successfully hacked your cell phone, he can easily get all information including contacts, messages, banking data and so on, because they already know your PIN code.