Devices are at risk due to Bluetooth security vulnerability
By MYBRANDBOOK
A freshly highlighted vulnerability in Bluetooth 4.2 version has been detected, which could sanction an unauthenticated malicious attacker in the proximity of affected devices to intercept, monitor and manipulate the data they exchange.
The vulnerability which has been labeled as CVE-2018-5383 has been confirmed by Carnegie Mellon University's CERT. The loophole affects several Apple, Broadcom, Intel, and Qualcomm devices. Select Android handsets may also be affected. Microsoft has not been included in the list of affected companies, as the technology giant has reportedly not yet integrated the new Bluetooth version 4.2, the affected version, into its devices.
The vulnerability can be taken advantage of within Bluetooth's SSP (Secure Simple Pairing) and Low Energy Secure Connections. Favorably for macOS users, Apple released a patch before the public awareness of the vulnerability spread, as per news reports.
What is being done
Special Interest Group, the guardians of Bluetooth are now working on updating the specification of the framework and will require devices to validate any and all public keys received, as a component of the key-based security procedures.
Farrhad Acidwalla, media entrepreneur and founder of CYBERNETIV- Forward Thinking Enterprise Security & Research,comments, “While there are no confirmed mass reports of the newly discovered Bluetooth vulnerability being exploited on scale, this vulnerability could be taken of advantage of silently if consumers are not using the patched version over time. As Bluetooth is a globally used framework, it's a very attractive target for hackers and its scale and widespread makes it a very valuable vulnerability.”
Analysts are worried that a plethora of devices such as smart watches, wireless keyboards use Bluetooth at their very core. Hypothetically an attacker can sniff keystrokes from an affected keyboard, read banking notifications on a smartwatch and much more. As this is not the first time Bluetooth has been hit by a critical vulnerability it illustrates that security awareness amongst consumers is the need of the hour.
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
Paytm brings UPI Lite Wallet for low-value transactions
Paytm’s parent company One97 Communications (OCL) is emphasizing upon UP...
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
TAC SECURITY SOLUTIONS
ZOHO CORPORATION PVT. LTD.
MICROTEK INTERNATIONAL PVT. LTD.
AMARA RAJA POWER SYSTEMS LTD.
Technology Icons Of India 2023: Ashwini Vaishnaw
Ashwini Vaishnaw is an Indian politician and former IAS officer and is...
Technology Icons Of India 2023: Hari Om Rai
Hari Om Rai is the Co-founder, Chairman & Managing Director of Lava In...
Technology Icons Of India 2023: Sandip Patel
Sandip Patel is the Managing Director, IBM India/South Asia. He is res...
ITI Limited widening its focus area
ITI Limited is a public sector undertaking company, has manufacturing ...
STPI encouraging software exports from India
Software Technology Parks of India (STPI) is an S&T organization under...
DRDO is India's largest and most diverse research organisation
DRDO is the R&D wing of Ministry of Defence, Govt of India, with a vis...
FORTUNE MARKETING PVT. LTD.
Delhi based Fortune Marketing, An ISO 9001:2008 company, distributes ...
INFLOW TECHNOLOGIES PVT. LTD.
Inflow Technologies is a niche player in the IT Infrastructure Distrib...
ADITYA INFOTECH LTD.
Aditya Infotech Ltd. (AIL) – the technology arm of Aditya Group, is ...