TechLair

  • Home
  • contact
  • About
  • Privacy Policy

Major Bluetooth Security Flaw Leaves Millions Vulnerable to Hackers

Monday, August 19, 2019 by Piyush Suthar | Comments

Home News Tech Major Bluetooth Security Flaw Leaves Millions Vulnerable to Hackers

teenager hacked apple guilty

Cyber-security researchers have detailed a critical Bluetooth vulnerability called KNOB (Key Negotiation Of Bluetooth) that they say can potentially allow hackers to intercept and manipulate a user’s communications. The vulnerability apparently affects any standard-compliant Bluetooth device, with the researchers claiming to have successfully carried out proof-of-concept attacks on more than 17 unique Bluetooth chips in 24 different devices from Intel, Apple, Lenovo, Qualcomm and more.

According to the researchers: “We found and exploited a severe vulnerability in the Bluetooth specification that allows an attacker to break the security mechanisms of Bluetooth for any standard-compliant device. As a result, an attacker is able to the listen, or change the content of, nearby Bluetooth communication, even between devices that have previously been successfully paired”.

The findings, which were presented recently at the USENIX Security Symposium by researchers from the Center for IT-Security, Privacy and Accountability (CISPA), exploits the fact that not every device has a minimum key-length requirement to establish a connection between two Bluetooth devices. As a result, hackers could potentially trick two Bluetooth devices into establishing a connection with a short encryption key created by them.

The attack was first disclosed to Bluetooth SIG and the affected vendors last November, following which, ‘some’ of the companies rolled out updates to mitigate the problem. “So … if your device was not updated after late 2018, it is likely vulnerable”, said the researchers. According to Hot Hardware, Apple and Microsoft have already released patches to fix the issue, while Cisco has promised to roll out a fix soon. Blackberry, Lenovo and Intel have issued security advisories, said the report.


Authored by Piyush Suthar
Pro Blogger


Follow me on Twitter, Facebook, Google+, YouTube.

Load comments
  • Newer Post
  • Home
  • Older Post
  • techlair
    Over 1,500+ Readers

    Get fresh content from TechLair

    brand222 facebook brand2 envelope-o

    BEST OF TechLair

    Oppo, OnePlus, Huawei Rank Higher Than Xiaomi, Samsung in Customer Satisfaction Survey
    Douyin, TikTok app in China, hits 400 million daily active users
    Asus’ new Zenfone 6 has a flip-up camera and a 5000mAh battery
    Poco F1 Price Slashed; Available for Just Rs. 17,999


    Copyright © 2019 TechLair. All rights reserved.
    Privacy Policy • DMCA • Contact