According to the research team, the attack can be carried out using simple commercially available hardware - the researchers used the WLAN card of a laptop and a Bluetooth-capable single-board computer similar to a Raspberry Pi or Arduino, which was originally developed as a programming learning platform for schoolchildren. Potential attackers would therefore have an easy time of it.
The vulnerability - published under the acronym CVE-2018-4368 - only affects Apple devices. But users of Android mobile phones should not lull themselves in security, the scientists warn: "The vulnerability also has implications for the non-Apple world. The Wi-Fi Alliance's new standard, Neighbor Awareness Networking (NAN), builds on AWDL and is already supported by Google's Android (https://www.wi-fi.org/discover-wi-fi/wi-fi-aware ). The researchers expect similar vulnerabilities to be found in NAN implementations, as AWDL and NAN are of similar complexity.
In a Youtube video, the researchers documented their attack. See https://www.youtube.com/watch?v=M5D9NeKapUo
Original publication: https://owlink.org