Home › News ›

Bluetooth Bug Could Expose Devices to Attack; Patch Coming

Article Comments

Jul 24, 2018, 7:42 AM by Eric M. Zeman

Researchers at the Israel Institute of Technology discovered a vulnerability in Bluetooth's Secure Simple Pairing and LE Secure Connections features that could lead to man-in-the-middle attacks. According to the researchers, the Bluetooth specification doesn't require devices with these features to validate the public key when pairing with new hardware. By not validating the key, it leaves the connection open to attack. In this case, the attacker would need to have a device within 30 meters and intercept the pairing procedure between two devices. The attacker's hardware could pose as the intended paired device, hijack the connection, and transmit malicious code. For this to work, both devices attempting to pair would need to have the Secure Simple Pairing or LE Secure Connections features enabled in their code, and the attacker's timing would have to be impeccable, according to the Bluetooth SIG. The bug impacts hardware from Apple, Broadcom, Intel, and Qualcomm, along with some Android handsets. According to ZDNet, Apple issued a patch for this bug in July. Intel and Qualcomm have updated their drivers, respectively, and some PC makers have begun to distribute the patches. LG and Huawei have said they'll include patches for the bug in security updates for their Android phones this month. Google has not mentioned the bug in any of its monthly security updates and it's not clear if the Android kernel, nor what other Android devices, are affected

Related

Major Update to Google Messages Brings iPhone-Compatible Emoji Reactions

Mar 10, 2022
Google today started rolling out a major update to its Messages app, the default SMS and RCS messaging app on most new Android phones. It includes several major new features, but the biggest for most people may be automatic conversion and tidier display of emoji reactions from iPhone users .

T-Mobile Details Plans to Keep its Lead in Mid-Band 5G Through 2023

Dec 1, 2021
T-Mobile recently announced that its mid-band 5G network now covers over 200 million people, a threshold that the industry acknowledges as "nationwide" coverage. (Mid-band 5G offers an ideal balance of fast data speeds and broad coverage compared to 5G in other bands.) In an interview with Phone Scoop, T-Mobile executives detailed how they plan to maintain the company's lead in mid-band 5G even as Verizon and AT&T launch mid-band 5G early next year.

Qualcomm Announces New Platforms for 5G, Wi-Fi, and Bluetooth

Feb 28, 2022
Qualcomm today announced the X70 5G modem, S5 and S3 Sound Platforms for Bluetooth audio products, and FastConnect 7800 subsystem with Wi-Fi 7. The highlight of the X70 is a new set of AI processing technologies to improve modem performance.

New Case Adds Keyboard to iPhone Pro

Jan 5, 2024
Clicks is a new case accessory for recent iPhone Pro models that adds a full physical QWERTY keyboard to the bottom of the phone. By disabling the software keyboard when in use, it frees up the lower half of the display for content while typing.

iOS 16's Lockdown Mode Protects Your Phone From Spies

Jul 6, 2022
Apple has revealed a new feature in iOS 16 aimed at "the very few users who, because of who they are or what they do, may be personally targeted by some of the most sophisticated digital threats". The new Lockdown Mode disables certain features and functionality that are most commonly used by the world's most advanced "mercenary spyware" to infiltrate specific phones.

more news about:

Comments

This forum is closed.

This forum is closed.

No messages

Page 1 of 1