Collaborate Disseminate
I have my custom made Android app which is connecting to my BLE controller. I want to prove that BLE is secured from passive eavesdropping. I have Adafruit Bluefruit BLE Sniffer and Wireshark. I can see packets transfered from Master to Sl… Continue reading BLE pairing method with Passkey entry – is it possible to sniff passkey value?
Sophos firewall appliances are actively being attacked by a 0-day exploit chain that originates with a SQL injection. That injection is a nasty one, as it can be launched from the WAN user portal. The observed attack used that vulnerability to inject a shell command into the device database, where …read more
I was quoted in BuzzFeed: "My problem with contact tracing apps is that they have absolutely no value," Bruce Schneier, a privacy expert and fellow at the Berkman Klein Center for Internet & Society at Harvard University, told BuzzFeed News… Continue reading Me on COVAD-19 Contact Tracing Apps
I was quoted in BuzzFeed: "My problem with contact tracing apps is that they have absolutely no value," Bruce Schneier, a privacy expert and fellow at the Berkman Klein Center for Internet & Society at Harvard University, told BuzzFeed News. "I’m not even talking about the privacy concerns, I mean the efficacy. Does anybody think this will do something useful?… Continue reading Me on COVID-19 Contact Tracing Apps
Sena has further extended the capabilities of its popular motorcycle Bluetooth headsets with a pair of new 50-series helmet comms devices offering mesh networking, fast charging, automatic updates and louder, bassier speakers than the 30K.Continue Read… Continue reading Sena updates its motorcycle Bluetooth comms with new 50S and 50R
Malicious actors could potentially harvest data over the air and use it to shake confidence in the public-health system, EFF says. Continue reading EFF: Google, Apple’s Contact-Tracing System Open to Cyberattacks
Is it possible for someone to exploit a Raspberry PI running Raspian through bluetooth just by having the bluetooth enabled?
Continue reading Bluetooth vulnerability on a Raspberry PI running Raspian
Germany’s ditched a homegrown alternative that featured a centralized database of location data, raising privacy concerns. Continue reading Coronavirus tracking tool from Apple and Google embraced by Germany
With the Wii’s unique controller, Nintendo not only provided new gaming experiences to players, but gave hardware hackers a platform for experimentation that’s still going strong. Case in point, this modification of a third party Wii “Nunchuk” by [Giliam de Carpentier] that turns the accessory into a stand-alone wireless controller …read more
Continue reading Custom Bluetooth Joystick in a Nunchuk Shell
Bluetooth came to the fore in the fight against the novel coronavirus this month when Apple and Google announced a project to use the wireless technology to trace people infected with the virus. The ambitious program to build interoperable software for iPhone and Android devices inspired hope in some and privacy concerns in others. New research highlights the potential security implications of using Bluetooth to track smartphone users. Jan Ruge, a researcher at the TU Darmstadt, a university in Germany, has shown how a hacker in close proximity to an Android device could use Bluetooth to execute code on it. The mobile device’s user wouldn’t need to click on anything to be compromised — the attacker would only need the Bluetooth address of the device and a software exploit. Ruge used the exploit on a Samsung Galaxy S10e, but it would work in theory on other phone models running unpatched versions of the Android 8.0-9.0 operating systems. […]
The post As contact tracing gains attention, a researcher pokes a hole in Bluetooth technology appeared first on CyberScoop.