this post was submitted on 01 Dec 2023
103 points (99.0% liked)

Cybersecurity News

1333 readers
7 users here now

Welcome to Cybersecurity News!

A community that collect news and other tidbits related to cybersecurity in all its domains.

There are no hard and fast rules regarding what to post here-- we are fine with both pop news articles and more technical pieces regarding cybersecurity.

We use a bot called flynnbot to repost some rss feed content but the majority of posts are human-curated.

New to Cybersecurity?

Here are some resources to get you started:

Related Communities

[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]

founded 1 year ago
MODERATORS
[email protected]
[email protected]
103
Bluetooth security flaws reveals all devices launched after 2014 can be hacked (lemmy.world)
submitted 11 months ago* (last edited 11 months ago) by [email protected] to c/[email protected]
18 comments fedilink hide all child comments
 

  • Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks.

  • The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others.

  • Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology.

Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066

Github: https://github.com/francozappa/bluffs

CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 8 points 11 months ago

Sure mate, do you ever take your car out of the garage or do you just leave it there in case it breaks down on the way to the shops?

I use Bluetooth devices with my phone all day every day. Car, headphones, watch, laptop, speakers. It's fine if you don't, but surely you can recognise that leaving bluetooth on for most people is about functionality rather than mere laziness.

That said, I'm not at all surprised that a vulnerability exists. Consumer tech just isn't built to be resilient in that way.