Blueborne is a newly revealed Bluetooth attack that allows wireless penetration of billions of devices

Cory Doctorow 7:25 am Tue Sep 12, 2017

Security research firm Armis has disclosed eight new Bluetooth vulnerabilities it collectively calls "Blueborne" that take less than 10 seconds to penetrate and take over device with Bluetooth switched on, without the user having to connect to a compromised device or take any other action.

Armis disclosed the vulnerability to major vendors prior to the disclosure; fully patched Windows systems and Ios devices are protected, and an Android update is being pushed today for Google phones.

GNU/Linux distributions are expected to issue patches soon; users of Android and GNU/Linux should switch off their Bluetooth until the patch arrives, because both are especially vulnerable to the attack.

Surprisingly, the majority of Linux devices on the market today don't use address space layout randomization or similar protections to lessen the damage of Blueborne's underlying buffer overflow exploit, Armis Head of Research Ben Seri said. That makes the code-execution attack on that OS "highly reliable." Android, by contrast, does use ASLR, but Armis was able to bypass the protection by exploiting a separate vulnerability in the Android implementation of Bluetooth that leaks memory locations where key processes are running. Blueborne also massages Android memory in a way that further lessens the protection offered by ASLR. The result: Blueborne can carry out remote code-execution attacks on both OSes that are both stealthy and reliable.

Armis researchers haven't confirmed that code execution is possible against Windows' unpatched Bluetooth implementation, but they were able to carry out other attacks. The most significant one allows hackers to intercept all network traffic sent to and from the targeted Windows computer and to modify that data at will. That means attackers could use Blueborne to bypass personal and corporate firewalls and exfiltrate sensitive data and possibly modify or otherwise tamper with it while it's in transit. The Android implementation is vulnerable to the same attack.

The IoT Attack Vector "BlueBorne" Exposes Almost Every Connected Device
General Overview [Armis]

Billions of devices imperiled by new clickless Bluetooth attack
[Dan Goodin/Ars Technica]

Watch inner tubes inflated until they burst

On YouTube, boxman1971 inflates inner tubes until they burst. The tension and suspense is overwhelming! I assumed this was purely an amateur scientific interest, but they appear to have filmed… READ THE REST
Dramatic dog plays dead every time his nails are about to get trimmed

This dramatic and clever dog has found a way out of getting his nails trimmed. Every time his owner tries to trim his little paw, he dramatically pretends to fall… READ THE REST
Can you carry a 75-inch TV set home on a unicycle?

You've probably seen the videos of consumers trying to fit a large electronics purchase, often a large TV screen, into a vehicle not designed for a large TV screen. You… READ THE REST
Save $169 on a lifetime license to Microsoft Windows 11 Pro and never look back

TL;DR: Revamp your digital world with this incredible lifetime license to Microsoft Windows 11 Pro, with its seamless interface and top-notch security, for only $29.97 (Reg. $199) until 11:59 PM on 1/07.… READ THE REST
Upgrade your tech for the new year with this refurbished iPad Pro, less than half price right now

TL;DR: Save over $350 on a refurbished Apple iPad Pro 10.5" 256GB, plus a free accessories bundle, with this sweet deal on sale for just $315.99 right now. Tech fans, it's time… READ THE REST
Make your rockstar dreams a reality for only $15.97 with this Guitar Lessons Training Bundle

TL;DR: The perfect last-minute holiday gift for an aspiring rocker, the 2024 Guitar Lessons Training Bundle is only $15.97 (Reg. $480) until 11:59 PM on 12/25. It's really never too late to make… READ THE REST