User profile for user: Pro-user1
Pro-user1 Author
User level: Level 1
42 points

Airdrop history and hacked personal logins

When sharing some website passwords with my wife her new iPhone using Airdrop something horrible went wrong.


I noticed to late the unnamed extra Airdrop icon that has showed up next to my wife her Airdrop username was not the iPad of my wife. I now accidentally shared some confidential passwords and photos of my young children with an unknown person. This unknown person has now also got access to some of my confidential password/logins. I do not know which of the passwords I shared as I have so many passwords stored on my iPhone. This is horrible.


My questions:


  1. Does apple (my iPhone) protect my family (and kids) from accidentally sending passwords and files to untrusted Airdrop users that pop-up in the Airdrop list? How can this be enabled for family members only so no other devices show up?
  2. Does apple (my iPhone) log the name of websites for which passwords or filenames that has been shared with Airdop outside my trusted family devices? How to access this?
  3. If this is not possible does anyone know why these seriously risks have introduced by Apple using the Airdrop protocol. I would expect apple design proper basic protection for my family/kids. Now unknown people can access my personal /private information and its impossible to find out what passwords/sites were shared.


Thank you for your help. Any more people facing this issue?

iPhone 11, iOS 15

Posted on Oct 31, 2021 5:28 PM

Reply

Similar questions

4 replies
User profile for user: Lawrence Finch
Lawrence Finch
Community+ 2026
User level: Level 10
232,756 points

Nov 1, 2021 6:01 AM in response to Pro-user1

I teach iPhone classes. For one of the exercises I AirDROP a file to everyone in the class. They need to be connected to the classroom Wi-Fi network for it to work. If they aren’t they don’t receive it, even if they have Bluetooth and Airdrop on. Yes, it uses Bluetooth to identify devices, but the actual data transfer uses Wi-Fi. It is not possible for someone not connected to your Wi-Fi network to receive an Airdrop. And, as I said, the solution for your problem is to limit Airdrop to contacts.


See→How to use AirDrop on your iPhone, iPad, or iPod touch - Apple Support and not specifically:

  • Make sure that the person you're sending to is nearby and within Bluetooth and Wi-Fi range.
  • Check that you and the person you're sending to have Wi-Fi and Bluetooth turned on. If either of you have Personal Hotspot on, turn it off.
Reply
User profile for user: Pro-user1
Pro-user1 Author
User level: Level 1
42 points

Nov 1, 2021 4:13 AM in response to Lawrence Finch

Lauwence, Your answer seems to be incorrect. Can you clarify were you got your answer from? Did you maybe mix-up with AIRPLAY which is for sharing video/audio?


Apple Airdrop uses device to device Wifi and not only the Wi-Fi network to connect. It also uses Bluetooth. Please check the technical data of Airdrop again.


Unauthorized neighbours or strangers now accidently received information without having an authorized wifi connection to my home wifi. Specially when you share Wifi network passwords/website passwords and pictures between your family IOS devices.

Problem is that for 5 seconds an unknown Airdrop user shows up and replaces my trusted family Airdrop icon.

And this is where is goes wrong.


Airdrop seems to be a serious risk for Apple users by its usability and security.

Reply
User profile for user: Pro-user1
Pro-user1 Author
User level: Level 1
42 points

Nov 1, 2021 6:27 AM in response to Lawrence Finch

You mention "They need to be connected to the classroom Wi-Fi network for it to work"


Last week I was at the apple store. The apple support employee requested me to Airdrop the invoice to the Apple computer in the Apple store. The invoice was sent by Airdrop to the Apple store PC without connecting to the Wifi Accesspoint of the apple store itself.


So:

  • It is not required to connect to the local wifi network for sending/receiving files. As said, Airdrop is a direct wifi connection (phone-to-phone).
  • The Apple site URL you sent (see above) , does not list the requirement of connecting to a local wifi network for using Airdrop.
  • For the test you described the following explained setting as listed on the apple site is not activated: You can put your AirDrop receiving setting to Contacts Only or Receiving Off at any time to control who can see your device and send you content in AirDrop.


Maybe you missed this one?


Before you begin https://support.apple.com/en-us/HT204144

  • Make sure that the person you're sending to is nearby and within Bluetooth and Wi-Fi range.
  • Check that you and the person you're sending to have Wi-Fi and
  • Bluetooth turned on. If either of you have Personal Hotspot on, turn it
  • off.
  • Check if the person you're sending to has their AirDrop set to
  • receive from Contacts Only. If they do, and you’re in their Contacts,
  • they need to have your Apple ID's email address or mobile number in your
  • contact card for AirDrop to work.
  • If you're not in their Contacts, have them set their AirDrop receiving setting to Everyone in order to receive the file.


You can put your AirDrop receiving setting to Contacts Only or Receiving Off at any time to control who can see your device and send you content in AirDrop.


Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Airdrop history and hacked personal logins

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up