Devices are at risk due to Bluetooth security vulnerability
By MYBRANDBOOK
A freshly highlighted vulnerability in Bluetooth 4.2 version has been detected, which could sanction an unauthenticated malicious attacker in the proximity of affected devices to intercept, monitor and manipulate the data they exchange.
The vulnerability which has been labeled as CVE-2018-5383 has been confirmed by Carnegie Mellon University's CERT. The loophole affects several Apple, Broadcom, Intel, and Qualcomm devices. Select Android handsets may also be affected. Microsoft has not been included in the list of affected companies, as the technology giant has reportedly not yet integrated the new Bluetooth version 4.2, the affected version, into its devices.
The vulnerability can be taken advantage of within Bluetooth's SSP (Secure Simple Pairing) and Low Energy Secure Connections. Favorably for macOS users, Apple released a patch before the public awareness of the vulnerability spread, as per news reports.
What is being done
Special Interest Group, the guardians of Bluetooth are now working on updating the specification of the framework and will require devices to validate any and all public keys received, as a component of the key-based security procedures.
Farrhad Acidwalla, media entrepreneur and founder of CYBERNETIV- Forward Thinking Enterprise Security & Research,comments, “While there are no confirmed mass reports of the newly discovered Bluetooth vulnerability being exploited on scale, this vulnerability could be taken of advantage of silently if consumers are not using the patched version over time. As Bluetooth is a globally used framework, it's a very attractive target for hackers and its scale and widespread makes it a very valuable vulnerability.”
Analysts are worried that a plethora of devices such as smart watches, wireless keyboards use Bluetooth at their very core. Hypothetically an attacker can sniff keystrokes from an affected keyboard, read banking notifications on a smartwatch and much more. As this is not the first time Bluetooth has been hit by a critical vulnerability it illustrates that security awareness amongst consumers is the need of the hour.
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
INFOSYS TECHNOLOGIES PVT. LTD.
TATA CONSULTANCY SERVICES
MATRIX COMSEC PVT. LTD.
LENOVO GROUP LTD.
Technology Icons Of India 2023: Sridhar Vembu
Sridhar Vembu is an Indian billionaire business magnate and the Founde...
Technology Icons Of India 2023: Madhabi Puri Buch
Madhabi Puri Buch is the chairperson of the securities regulatory body...
Technology Icons Of India 2023: Girish Mathrubootham
Girsh Mathrubootham envisioned and co-founded Freshworks. Freshworks, ...
PGCIL transforming India with its wide power transmission network
Engaged in power transmission, POWERGRID or PGCIL is a stated owned In...
EESL encouraging e-mobility adoption across India
Energy Efficiency Services Limited (EESL) is a Super Energy Service Co...
NIC bridging the digital divide and supporting government in eGovernance
The National Informatics Centre (NIC) is an Indian government departme...
INTEGRA MICRO SYSTEMS PVT. LTD.
Integra is a leading provider of innovative hi-technology products an...
ADITYA INFOTECH LTD.
Aditya Infotech Ltd. (AIL) – the technology arm of Aditya Group, is ...
WPG C&C COMPUTERS & PERIPHERALS PVT. LTD.
WPG C&C Computers & Peripherals (India) was incorporated in 2008 and ...