Il Bluetooth it is now a technology cleared through customs, so much so that it is also used with devices at very low cost. In fact, there are headphones and smartphones that integrate the dedicated module and that cost very little. But here we are going to talk about one vulnerability, a problem, which was discovered by poco. To be honest BrakTooth, this is the name of the vulnerability, ne it encompasses over 16 problems. Let's see in detail what it is.
A new Bluetooth vulnerability called BrakTooth puts many Android smartphones but also Windows devices at risk. Here's what it entails
A group of researchers from the Singapore University of Technology and Design has reported at the same time 16 vulnerabilities in Bluetooth chips from many of the major suppliers. Such vulnerabilities potentially pose a threat to a huge number of users across a wide variety of platforms.
As mentioned, the vulnerability group discovered was called BrakTooth. At risk, the researchers say, is a technology that uses Bluetooth chips from 11 manufacturers, including Intel, Qualcomm, Texas Instruments, Infineon, Labs and other. In total, more than 1400 different chipsets installed in laptops, desktops, tablets, smartphones and all kinds of smart home devices may be affected.
Read also: Qualcomm's aptX Lossless promises CD-quality audio but with Bluetooth
Depending on the type of device, vulnerabilities offer attackers different leeway. In some cases, they can send an LMP packet (Link Management Protocol) to disable the smartphone (or even PC) which in any case is solved with a simple restart. In others, the hacker can remotely execute malicious code on the device of the victim.
Expressif, Infineon and Bluetrum have released fixes for their chips, while other manufacturers are still investigating the problem and are not ready to announce a timeline to fix it. True, they have poco time available, since the researchers who discovered the vulnerabilities have promised to publish all data to the end of October this year.
Through | Malwarebytes Blog
