Billions Of Devices At Risk From Bluetooth Flaws — Blueborne Attacks

Billions Of Devices At Risk From Bluetooth Flaws — Blueborne Attacks

It could also change data in transit.

The eight vulnerabilities include a Linux kernel RCE vulnerability (CVE-2017-1000251), Linux Bluetooth stack (BlueZ) information Leak vulnerability (CVE-2017-1000250), Android information Leak vulnerability (CVE-2017-0785), Android Remote Code Execution vulnerabilities (CVE-2017-0781 and CVE-2017-0782), The Bluetooth Pineapple in Android - Logical Flaw (CVE-2017-0783) and Bluetooth Pineapple in Windows - Logical Flaw (CVE-2017-8628).

Based on a proof-of-concept, the security gaps - which have been dubbed "BlueBorne" - could be used by hackers to spread malware or intercept data. It can spread through the air (airborne) and attacks devices via Bluetooth.

"No security mechanism is there to block incoming Bluetooth connections, so an attacker can bypass all of them completely", says Ben Seri, head of research at Armis Security, the two-year-old cybersecurity startup that found the security holes.

Even when the Bluetooth feature is left in a non-discoverable state, devices running vulnerable implementations can be found with network sniffers, the researchers said. "This vulnerability resides in the Bluetooth Network Encapsulation Protocol (BNEP) service, which enables internet sharing over a Bluetooth connection (tethering)".

Microsoft patched the vulnerabilities in July during the company's regularly scheduled Patch Tuesday. Microsoft said Windows phones are not impacted by BlueBorne. The tech giant's Android ecosystem is fragmented across a wide variety of partners, such as phone manufacturers and mobile carriers, who are responsible for distributing patches developed by Google. Microsoft is expected to release patches later today. It's also highly infectious and can spread malware to nearby devices.

Linux has a problem in memory allocation in Bluetooth that can allow attackers to take over systems.

There are two specific methods attackers could use with exploit code.

Blueborne poses a significant risk to both individuals and organizations.

More news: Liam Neeson Finally Ready to Quit Action Movies

Armis researchers haven't confirmed that code execution is possible against Windows' unpatched Bluetooth implementation, but they were able to carry out other attacks.

They claim it potentially affects over 8 billion devices although that sounds like a bit of hyperbole given most of the installed base of iOS users, for example, are running a version of iOS that is not vulnerable. The researchers consider three of the flaws to be critical.

Armis disclosed the flaws in April to Apple, Google, Linux maintainers, and Microsoft. The vulnerabilities for Android are indexed as CVE-2017-0781, CVE-2017-0782, CVE-2017-0783, and CVE-2017-0785; the vulnerabilities for Linux are CVE-2017-1000251 and CVE-2017-1000250; the vulnerability for Windows is CVE-2017-8628; the designation for iOS vulnerability wasn't immediately available. According to Armis Labs, BlueBorne can easily affect PCs and mobile phones since there is no need to pair the device with the targeted device.

The researchers said they expect Linux, which is an open source project managed by a community of volunteers, to release a fix soon. They, too, allowed attacks that were transmitted wirelessly from device to device with no user interaction.

More information on the attack can be found below.

"The learning curve to scan for Bluetooth devices isn't that much greater than scanning for Wi-Fi access points". Such self-replicating exploits could quickly take over huge numbers of devices at conferences, sporting events, or in work places. All that is needed is to turn Bluetooth on. The vulnerabilities reported by Armis now reinforce the wisdom of that advice.

Izrael confirmed that BlueBorne exploits would have to be customized for each platform but said the amount of work required to do so would be manageable.

A video posted by Armis demonstrates how a Google Pixel can be compromised.

Related Articles

  • Atletico Madrid: Diego Costa Wrap Up Deal

    Atletico Madrid: Diego Costa Wrap Up Deal

    Talksport understands that Atletico Madrid are hopeful of agreeing a £54m deal for Chelsea striker Diego Costa this week. The striker has made 120 appearances for the Stamford Bridge club since joining in 2014, scoring 58 goals along the way.

    North Korea threatens United States over new sanctions

    The proposal included a ban on oil and textile exports to North Korea and prohibited North Korean citizens from working overseas . It also allows states to inspect vessels on the high seas suspected of carrying items prohibited by the sanctions regime.
    Jamie Dimon: Bitcoin Is a 'Fraud'

    Jamie Dimon: Bitcoin Is a 'Fraud'

    Dimon told an investor conference in New York Tuesday that cryptocurrency investments "wont' end well" because they are a "fraud". If a JPMorgan trader began trading in bitcoin , he said, "I'd fire them in a second".
  • Apple details new heart-tracking features for Watch

    Apple details new heart-tracking features for Watch

    Apple Watches running watchOS 4 will make use of GymKit as well, which lets the device talk to exercise equipment. Apple has not yet announced the Australian or United Kingdom prices for the device.
    Supreme Court Allows Trump Administration To Block Refugees With Resettlement Agency Assurances

    Supreme Court Allows Trump Administration To Block Refugees With Resettlement Agency Assurances

    Now, the full Supreme Court will have time to consider the merits of the Trump administration's emergency request. Time is beginning to become a factor in the broader fight over Trump's travel ban.
    Ninth person dies after shooting at Dallas Cowboys football party

    Ninth person dies after shooting at Dallas Cowboys football party

    A lot of prayers have been said at the corner of Blue Ridge Trail and Spring Creek Parkway in Plano over the past day and a half. Police are still investigating the motive behind the shooting. "He couldn't wait for backup", Rushin said of the officer.
  • Kim Jong Un hosts party for nuclear experts

    Russian Federation had condemned the idea of tightening sanctions on North Korea without any political push to resolve the crisis. And then China's ambassador at the time was on a Security Council trip to Africa, so he had to rush back to negotiate this.
    Anthony Joshua: I'd Love To Fight Until I'm 40 Years Old

    Anthony Joshua: I'd Love To Fight Until I'm 40 Years Old

    Pulev has won 25 of his 26 fights , his only defeat coming when he was stopped by Klitschko inside five rounds in November 2014. I started boxing when I was 12 years old. "It's not up to the judges, you've made the decision yourself".
    United Kingdom  regulator issues warning about Initial Coin Offerings

    United Kingdom regulator issues warning about Initial Coin Offerings

    In its latest statement, the FCA restated that the regulation of ICOs in the United Kingdom "can only be decided case by case". ICOs have exploded in popularity this year, becoming the preferred method for raising capital by blockchain startups.
  • Hurricane Jose continues to meander in the Atlantic

    Hurricane Jose continues to meander in the Atlantic

    The National Hurricane Center called Jose an "amorphous blob of deep convection", in its 11 a.m. advisory. According to USA Today , Jose is now a Category 2 storm with sustained winds of 105 miles per hour .
    Smithfield shifts racing sponsorship to Stewart-Haas

    Smithfield shifts racing sponsorship to Stewart-Haas

    Though Patrick won't be in a SHR Ford next season, she is still optimistic about her future. The new driver of the SHR Monster Energy Cup vehicle will be named later.
    United Nations  imposes new sanctions on North Korea, Pyongyang warns U.S.  of consequences

    United Nations imposes new sanctions on North Korea, Pyongyang warns U.S. of consequences

    Existing North Korean account holders could not deposit or remove money from their accounts, the BoC bank teller said. Secretary-General Antonio Guterres try to resolve the dispute "gives rise to very serious questions in our minds".