blueborne attack vector bluetooth vulnerability

BlueBorne BlueTooth Vulnerability

blueborne attack vector bluetooth vulnerability

A new ‘attack vector’ exposes almost every connected device. Armis Labs have revealed a new attack vector endangering major mobile, desktop, and Internet of Things devices. This includes all devices running Android, iOS, Windows, and Linux operating systems and the devices running them.

The vulnerability has been named “BlueBorne”, it spreads over the air and attacks devices via Bluetooth.

Their are 8 vulnerabilities in total, 4 are designated as “Critical”, Armis state “BlueBorne allows attackers to take control of devices, access corporate data and networks, penetrate secure “air-gapped” networks, and spread malware laterally to adjacent devices. Armis reported these vulnerabilities to the responsible actors, and is working with them as patches are being identified and released.”

Full details here https://www.armis.com/blueborne/

For those who just want to know what to do.

Microsoft
Windows users should check with Microsoft
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8628

Linux
Users should visit their manufacturers website or contact their IT supplier.

Mac and iOS
All iPhone, iPad and iPod touch devices with iOS 9.3.5 and lower, and AppleTV devices with version 7.2.2 and lower are affected by the remote code execution vulnerability. Upgrade to iOS 10 or latest iOS/tvOS now.

Patch your Mac to latest supported OS, if in doubt contact Apple Support.

Remote code execution via Apple’s Low Energy Audio Protocol
This vulnerability was found in a new protocol Apple has invented, which operates on top of Bluetooth, called LEAP (Low energy audio protocol). Devices such as AirPods may require an upgrade, a patch or other software update from Apple, check with their support.

https://support.apple.com/en-gb/contact

Android
Visit here and install to check and patch.
https://play.google.com/store/apps/details?id=com.armis.blueborne_detector

Also check with your device manufacturer for specific device patches.

If you are concerned your device may not be patched or is vulnerable, disable Bluetooth, and minimizing its use until you can confirm a patch is issued and installed on your device.

Patch, update and protect your devices, don’t think “it will never happen to me” because that is EXACTLY what the hackers want you to think.

Be safe, protect yourself and your devices.

If You Wish to Let us Know Your Thoughts, Add to the Discussion or Comment on the Above Post, Feel Free to Leave a Reply

Your email address will not be published.

About Stuart Morrison

Stu Morrison's background in marketing, entertainment and web development has fused him into a guy thirsty for results in marketing. His regular talks on marketing and web conversion help others to gain more revenue from their websites. He also has a big moustache.