Highest Voted 'bluetooth' Questions - IT Security Stack Exchange

3

votes

1 answer

Can malware spread via bluetooth file transfer in Android?

I am aware of some malware that spreads when two devices are paired using Bluetooth; but can malware spread when sending a clean file to someone or receiving it via bluetooth ? If so, does it need some action from the user to start the malicious…

malware android bluetooth

asked Aug 05 '15 at 09:31

pgmank

415
6
13

3

votes

2 answers

BTLE pairing: Where does the code come from?

When trying to pair 2 bluetooth LE devices (e.g. 2 iPhones), a popup shows up that requires to input a code displayed on the other device. I am aware of the concept of out-of-band authentication, and why it is necessary. Device A generates a…

authentication man-in-the-middle bluetooth

asked Nov 17 '14 at 13:19

desktop

45
4

3

votes

1 answer

What about AD2P vulnerability?

My goal is to create a simple one-way intercom using B Speech TX2 and B Speech RX2, an Audio2Bluetooth and Bluetooth2Audio converter. My question is, how secure is the audio(in my case voice) being transmitted via AD2P using this setup? Can other…

windows linux bluetooth

asked May 20 '13 at 19:29

Brutus Cruciatus

141
5

3

votes

1 answer

How does the Apple/Google Exposure Notification system prevent infected users from being identified?

Under Apple and Google's contact tracing scheme, Alice's device generates a daily random value (termed a Temporary Exposure Key or TEK in the Cryptography Specification). Every 10 minutes, a Rolling Proximity Identifier (RPI) is generated from the…

google bluetooth apple

asked Mar 06 '21 at 20:45

Marcel

131
4

3

votes

1 answer

Is bluetooth keyboard more secure than USB keyboard for a malicious firmware?

There are some threads talking about Bluetooth keyboard security. But I have a different concern. I will only need 4 keys from an external keyboard, Home/End/PageUp/PageDn keys. Because I use them a lot and my laptop keyboard has a bad design (no…

usb bluetooth keyboard

asked Dec 24 '20 at 07:31

sgon00

133
4

3

votes

1 answer

Freshness Protection in BL and BLE

I recently found this document: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-121r2.pdf , Guide to Bluetooth Security from NIST. Unfortunately, there is nothing described w.r.t.actual protection of the communication other than…

bluetooth replay-detection

asked Sep 24 '20 at 13:38

Marc

31
3

3

votes

0 answers

Can Apple and Google bypass the decentralised COVID-19 tracing approach (DP-3T)?

Many thoughts have been spent on creating the decentralised, minimum-knowledge contact tracing approach DP-3T. This has been implemented in contact tracing apps of several countries, e. g. the German Corona-Warn-App. Following this approach, there…

privacy android ios user-tracking bluetooth

asked Jun 17 '20 at 13:10

edfrank

31
1

3

votes

1 answer

Why are some Bluetooth devices susceptible to ping floods and some are not?

Just for fun, I've ping flooded my bluetooth speaker at home using l2ping on Linux and I was unable to connect to it as the pinging continued. I've tried flooding my phone and it seems to have received the packets as I got a response (just like the…

bluetooth flooding ping

asked Apr 04 '20 at 07:41

user168683

3

votes

1 answer

Security risk of leaving bluetooth on all the time on an Android 10 phone

What are the security risks associated with leaving bluetooth on all the time on a Pixel phone updated to Android 10? In this question, I am NOT focusing on the risks associated with someone intercepting my conversation using a bluetooth headset as…

malware android bluetooth

asked Nov 01 '19 at 20:49

Help

109
4

3

votes

1 answer

Should I encrypt Blutooth communication?

I'm making an Android app which needs to safely communicate with PC app over Bluetooth. I'm going to use RFCOMM for that purpose. Since apps will exchange user authentication details, there should be no possibility to get unauthorized access to…

encryption bluetooth

asked Oct 24 '18 at 15:53

dist3r

33
4

3

votes

1 answer

What could MitM'ed U2F do?

Google has now released their "Titan" keys to the general store (albeit via a waitlist). When they first announced their product, Yubico, their chief competitor, decried the use of Bluetooth: Google’s offering includes a Bluetooth (BLE) capable…

man-in-the-middle bluetooth u2f

asked Aug 30 '18 at 18:07

Michael

2,391
2
19
36

3

votes

1 answer

Can I know that my bluetooth speaker has been hacked?

I have a JBL Go bluetooth speaker paired with a Dell laptop running Ubuntu 17.10. I suspect malicious intermittent activity on that speaker, but I am not sure and I am looking for proof or evidence it has been or not hacked. For example, some months…

attacks logging bluetooth

asked Apr 17 '18 at 09:19

solsTiCe

201
2
8

3

votes

2 answers

BLE 5.0 security vs. 4.2

Is there any material improvement/difference in BLE security controls/requirements in BLE 5.0 spec as compared to BLE 4.2 spec? I skimmed through the BLE bits in the huge Bluetooth 5.0 core spec but that didn't help. I am aware that there are…

bluetooth

asked Jan 05 '18 at 08:21

ricky pan

31
1
2

3

votes

1 answer

Bluetooth Low Energy - Relationship between PINs and man-in-the-middle attacks

In the Bluetooth core document, there are various Association Models, I'm trying to understand Numeric Comparison, where both devices are capable of showing a six-digit number (which I will call the PIN, although apparently they don't like that…

bluetooth

asked Feb 21 '17 at 17:28

Betty Crokker

155
1
8

3

votes

3 answers

Is it possible to find the manufacturer of a BLE device from it's mac address?

Tools like nmap are able to identify the make of a device based on it's mac address. Is there a tool or a reference to identify the make of a Bluetooth Low Energy device based on its mac address?

hardware mac-address bluetooth

asked Feb 20 '17 at 10:00

Tabish Imran

131
1
1
3

Questions tagged [bluetooth]