bluetooth – Page 2 – SSL and internet security news

Bluetooth Vulnerability: BIAS

May 26, 2020 infossl

authentication, bluetooth, impersonation, Security technology, securityengineering, vulnerabilities, wireless

This is new research on a Bluetooth vulnerability (called BIAS) that allows someone to impersonate a trusted device: Abstract: Bluetooth (BR/EDR) is a pervasive technology for wireless communication used by billions of devices. The Bluetooth standard includes a legacy authentication procedure and a secure authentication procedure, allowing devices to authenticate to each other using a … Read More “Bluetooth Vulnerability: BIAS” »

Me on COVID-19 Contact Tracing Apps

May 1, 2020 infossl

baserate, bluetooth, covid19, falsenegatives, falsepositives, gps, identification, medicine, privacy, Security technology, surveillance, tracing

I was quoted in BuzzFeed: “My problem with contact tracing apps is that they have absolutely no value,” Bruce Schneier, a privacy expert and fellow at the Berkman Klein Center for Internet & Society at Harvard University, told BuzzFeed News. “I’m not even talking about the privacy concerns, I mean the efficacy. Does anybody think … Read More “Me on COVID-19 Contact Tracing Apps” »

Major Bluetooth Vulnerability

July 25, 2018 infossl

academicpapers, bluetooth, cryptography, encryption, keys, Security technology, vulnerabilities, wifi, wireless

Bluetooth has a serious security vulnerability: In some implementations, the elliptic curve parameters are not all validated by the cryptographic algorithm implementation, which may allow a remote attacker within wireless range to inject an invalid public key to determine the session key with high probability. Such an attacker can then passively intercept and decrypt all … Read More “Major Bluetooth Vulnerability” »

Ridiculously Insecure Smart Lock

June 18, 2018 infossl

bluetooth, locks, physicalsecurity, Security technology

Tapplock sells an “unbreakable” Internet-connected lock that you can open with your fingerprint. It turns out that: The lock broadcasts its Bluetooth MAC address in the clear, and you can calculate the unlock key from it. Any Tapplock account an unlock every lock. You can open the lock with a screwdriver. Regarding the third flaw, … Read More “Ridiculously Insecure Smart Lock” »

Bluetooth Vulnerabilities

September 18, 2017 infossl

airgaps, bluetooth, malware, patching, Security technology, vulnerabilities

A bunch of Bluetooth vulnerabilities are being reported, some pretty nasty. BlueBorne concerns us because of the medium by which it operates. Unlike the majority of attacks today, which rely on the internet, a BlueBorne attack spreads through the air. This works similarly to the two less extensive vulnerabilities discovered recently in a Broadcom Wi-Fi … Read More “Bluetooth Vulnerabilities” »

Hacking the Internet of Things: Locks and Thermostats

August 10, 2016 infossl

bluetooth, drm, hacking, internetofthings, locks, ransomware, Security technology

At Defcon last weekend, researchers demonstrated hacks against Bluetooth door locks and Internet-enabled thermostats. Powered by WPeMatico