KNOB Attack – Bluetooth Vulnerability Exposes Data To Hackers.
A group of researchers has discovered a critical Bluetooth vulnerability that leaves tons of wireless devices exposed to digital intrusions. The Bluetooth SIG, an organization that oversees the technology’s standards, has issued a security notice for what the researchers are calling Key Negotiation of Bluetooth or KNOB attack.
It gives hackers the ability to interfere with the Bluetooth pairing procedure, allowing them to alter the encryption key making it easiery for attackers to brute force their way into the connection and be able to spy on data shared between devices, such as between a phone and a speaker or a phone and another phone.
In addition not every device is vulnerable. The flaw only applies to traditional Bluetooth devices (not Bluetooth Low Energy), and some Bluetooth devices may have protection against it, if they have a hard-coded minimum password strength.
The organization behind Bluetooth can’t fix the flaw, but it’ll protect against it going forward by recommending that a minimum password length be implemented on vulnerable devices.
Read the full article at The Verge by clicking HERE [1].
Read the full article at the Engadget by clicking HERE [2].
[3]