Devices are at risk due to Bluetooth security vulnerability
By MYBRANDBOOK
A freshly highlighted vulnerability in Bluetooth 4.2 version has been detected, which could sanction an unauthenticated malicious attacker in the proximity of affected devices to intercept, monitor and manipulate the data they exchange.
The vulnerability which has been labeled as CVE-2018-5383 has been confirmed by Carnegie Mellon University's CERT. The loophole affects several Apple, Broadcom, Intel, and Qualcomm devices. Select Android handsets may also be affected. Microsoft has not been included in the list of affected companies, as the technology giant has reportedly not yet integrated the new Bluetooth version 4.2, the affected version, into its devices.
The vulnerability can be taken advantage of within Bluetooth's SSP (Secure Simple Pairing) and Low Energy Secure Connections. Favorably for macOS users, Apple released a patch before the public awareness of the vulnerability spread, as per news reports.
What is being done
Special Interest Group, the guardians of Bluetooth are now working on updating the specification of the framework and will require devices to validate any and all public keys received, as a component of the key-based security procedures.
Farrhad Acidwalla, media entrepreneur and founder of CYBERNETIV- Forward Thinking Enterprise Security & Research,comments, “While there are no confirmed mass reports of the newly discovered Bluetooth vulnerability being exploited on scale, this vulnerability could be taken of advantage of silently if consumers are not using the patched version over time. As Bluetooth is a globally used framework, it's a very attractive target for hackers and its scale and widespread makes it a very valuable vulnerability.”
Analysts are worried that a plethora of devices such as smart watches, wireless keyboards use Bluetooth at their very core. Hypothetically an attacker can sniff keystrokes from an affected keyboard, read banking notifications on a smartwatch and much more. As this is not the first time Bluetooth has been hit by a critical vulnerability it illustrates that security awareness amongst consumers is the need of the hour.
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
FIREBOLTT
OPTIEMUS INFRACOM
VERSA NETWORKS INDIA PVT. LTD.
TAC SECURITY SOLUTIONS
Technology Icons Of India 2023: Dr. P D Vaghela
Dr PD Vaghela serves as the Chairperson of Telecommunications Regulato...
Technology Icons Of India 2023: Deepinder Goyal
Deepinder Goyal is the Founder and CEO of Zomato. Deepinder, or Deepi,...
Technology Icons Of India 2023: Ritesh Agarwal
Ritesh Agarwal Founder & CEO of OYO Hotels & Homes-World’s fastest g...
DRDO is India's largest and most diverse research organisation
DRDO is the R&D wing of Ministry of Defence, Govt of India, with a vis...
STPI encouraging software exports from India
Software Technology Parks of India (STPI) is an S&T organization under...
New defence PSUs will help India become self-reliant
MIL, India’s biggest manufacturer and market leader is engaged in Pr...
TECHNOBIND SOLUTIONS PVT. LTD.
TechnoBind’s business model is focused on identifying and partnering...
B D SOFTWARE
BD Software is the distributor of IT security solutions in India. The ...
FORTUNE MARKETING PVT. LTD.
Delhi based Fortune Marketing, An ISO 9001:2008 company, distributes ...