Posted on 3rd April 2018 - Takes 2 minutes to read
Update: Although geolocation is commonly referenced when discussing HTML 5, it is an API which is maintained in a separate specification and is not actually a new feature of HTML 5.
Identifying the physical location of a computer via HTML 5's geolocation is now incredibly easy and only requires a few lines of JavaScript.
Due to the simplicity of geolocation and its ever growing support in modern browsers, it seems very probable that this could be exploited for malicious purposes. An example scenario of how malware could theoretically track the physical location of infected machine could be as follows.
In this example, the geolocation is all done via a local hidden user agent (web browser) using web technologies. The web part of the system, by its very nature, multi-platform. However, the initial piece of malware which launches the hidden web browser instance will likely be written in a platform specific manner.
Changing this, or writing multiple versions of the 'browser launcher' malware would effectively generate a form of malware which could track the physical location of users regardless of their operating system.
Do you think this kind of malware is a reasonable threat now or in the near future? What other potential problems exist for devices that can be identified by geolocation technologies?