Bluetooth security flaws reveals all devices launched after 2014 can be hacked - Infosec.Pub
infosec.pub
* Security researchers have discovered new Bluetooth security flaws that allow hackers to impersonate devices and perform man-in-the-middle attacks. * The vulnerabilities impact all devices with Bluetooth 4.2 through Bluetooth 5.4, including laptops, PCs, smartphones, tablets, and others. * Users can do nothing at the moment to fix the vulnerabilities, and the solution requires device manufacturers to make changes to the security mechanisms used by the technology. Research paper: https://dl.acm.org/doi/pdf/10.1145/3576915.3623066 [https://dl.acm.org/doi/pdf/10.1145/3576915.3623066] Github: https://github.com/francozappa/bluffs [https://github.com/francozappa/bluffs] CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-24023 [https://nvd.nist.gov/vuln/detail/CVE-2023-24023]
  • Slotos@feddit.nl
    2·
    11 months ago

    One time pad system is only unbreakable if you ignore nearly everything about it.

    It requires key exchange, storage, cordination, and disposal. In other words, the usual targets.

    • stoy
      1·
      11 months ago

      Yep, that is why I noted “if used peoperly” (: