• Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks.

  • The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others.

  • Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology.

Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066

Github: https://github.com/francozappa/bluffs

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023

  • arandomthought
    link
    fedilink
    arrow-up
    13
    ·
    11 months ago

    It’s such an apple thing to do. “Alright, you want to turn off Bluetooth, okay. But we think it’s better to have it on, and we know better, so, you know: Tomorrow’s another day.” At that point I don’t own my device, I’m hostage negotiating with it.