During a presentation at the BlackHat conference last week, titled “How I Met Your Girlfriend,” Samy Kamkar discussed the new method in detail. It works as follows:
2) the hacker then puts the stolen MAC address into Google Location Services, which gives him an address accurate to a few hundred feet.
“Their web browser is compelling this exploit for you,” Kamkar said. “Pretty cool.”
The slides from the presentation are here