Billions Of Devices At Risk From Bluetooth Flaws — Blueborne Attacks

Adjust Comment Print

Other devices running older versions of Android and Linux could be vulnerable.

Devices with Bluetooth enabled are constantly searching for other Bluetooth devices, which can allow an attacker to use the BlueBorne vulnerability to connect to it without having to pair with said device. If your device has Bluetooth and is on then it is possible for an attacker to take complete control of it from 32 feet away.

The attacker will exploit a vulnerability in the implementation of the Bluetooth protocol on that platform and then choose whether or not to do a MITM attack to intercept communications or take over the device for other malicious purposes.

About Armis Armis eliminates the IoT security blind spot, protecting enterprises from the threat of unmanaged or rogue devices and networks.

Armis notes that a particularly distressing aspect of the Blueborne attack is that it can be used to infect systems owners thought were secured by not being connected to the internet.

Microsoft patched the vulnerabilities in July during the company's regularly scheduled Patch Tuesday.

It said that its Windows phones were not impacted by the attack vector.

Patches were issued for Android by Google in September.

Bangladesh offers land to shelter Rohingya fleeing Myanmar
The statement called on the Myanmar government to do the same to address the "humanitarian crisis" unfolding in the state. KHAR: Jamaat-i-Islami (JI), Bajaur chapter, staged a protest against the genocide of Rohingya Muslims in Myanmar.

The researchers said they expect Linux, which is an open source project managed by a community of volunteers, to release a fix soon.

While these fixes cover most users, those operating on older devices or out-of-date operating systems-a number that still tallies in the millions worldwide-will remain vulnerable with little recourse to prevent against the attack.

Security firm Armis has issued a warning over the potential of Bluetooth-based attacks using a new vector it has dubbed "BlueBorne". Researchers were able to create botnets and install ransomware using Bluetooth, with attack taking just around 10 seconds. BlueBorne also massages Android memory in a way that further lessens the protection offered by ASLR.

Blueborne poses a significant risk to both individuals and organizations. They also do not need pairing to be implemented. It could also change data in transit.

BlueBorne-Android Take Over Demo. The researchers consider three of the flaws to be critical. More information about the Android, Windows, and Linux attacks can be found in the videos below.

"BlueBorne is a name we gave for eight vulnerabilities found in the common Bluetooth stacks of all the major vendors", said Armis co-founder and CTO Nadir Izrael in a phone interview with The Register. Google's Android, however, is spread across so much hardware that the onus to update falls on third-party manufacturers, who might not patch out the vulnerability in time. BlueBorne is highly infectious as it spreads further via the victim devices. It's not completely secretive, however, because in activating the exploits you "wake up" the device.

Although you're not likely at risk from BlueBorne, it's a good idea to keep Bluetooth turned off on your device when you're not using it. The vulnerabilities reported by Armis now reinforce the wisdom of that advice.

Furthermore, the vulnerabilities can be concocted into a self-spreading BlueTooth worm that could wreak havoc inside a company's network or even across the world. All are at risk of being affected by Blueborne vulnerabilities. In the meantime, Armis was able to demonstrate the attack on an unpatched Pixel, running malicious software remotely without user permission. What's more: "An attacker that would want to weaponize these exploits could achieve generic exploits with very little work".