Security researchers uncover Bluetooth vulnerability that could let hackers track your LOCATION

Mail Online | 7/17/2019 | James Pero For Dailymail.com
liizu (Posted by) Level 3
Click For Photo: https://i.dailymail.co.uk/1s/2019/07/17/23/16183764-0-image-a-20_1563402082650.jpg

Researchers say a flaw in the Bluetooth communication of many devices is leaving iOS, Microsoft, and fitness wearable users open to tracking.

Devices susceptible to the flaw include popular Apple gadgets like iPads, and iPhone's Apple watches as well as Microsoft products and wearable like Surface tablets, laptops, and FitBits.

Everybody - Bluetooth - Device - Nowadays - Way

'Basically everybody is carrying around a Bluetooth device nowadays in some way, shape, or form, and that makes it very relevant,' said Johannes Becker, a Boston University graduate researcher on the team, in a statement.

According to a paper published by the security researchers from Boston University, the exploit focuses on the way devices pair with one another.

Device - Bluetooth - End - Device - Connection

Usually, when pairing a device to an external Bluetooth, one end -- the main device -- acts as a primary connection while the other plays a tertiary role.

The tertiary device sends out a signal -- similar to an IP address -- that contains data about the connection.

Design - Connection - Address - Users - Identity

By design, that connection is supposed to be a random address that reconfigures itself, meant to protect a users' identity, however, by using a 'sniffer' program --a public software that scans for Bluetooth connections-- researchers were able to ID devices even after addresses changed.

'Most computer and smartphone operating systems do implement address randomizations by default as a means to prevent long-term passive tracking,' reads the paper.

Devices - Windows - IOS - Transmit - Advertising

'However, we identified that devices running Windows 10, iOS or macOS regularly transmit advertising events containing custom data structures which are used to enable certain platform-specific interaction with other devices within BLE range.'

These 'advertising events' can be used to...
(Excerpt) Read more at: Mail Online
Wake Up To Breaking News!
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!