BlueBorne - The Bluetooth Virus

25th Dec 2018 @ 04:41 By: Ugbana

Security experts have warned of a new virus spread over Bluetooth that can take over a smartphone - and affects almost 5.3 BILLION devices worldwide. The BlueBorne virus takes advantage of a series of vulnerabilities affecting devices connected via Bluetooth.The security holes let attackers take control of Bluetooth-enabled gadgets, executes code on them remotely and intercepts traffic between devices.

Gadgets affected are unpatched devices running Android, Windows and Linux as well as earlier versions of iOS, according to security research firm Armis. The threat is dubbed BlueBorne because it spreads airborne via Bluetooth.

Researchers envisioned one worst-case scenario where a delivery person enters a bank with an infected smartphone that has Bluetooth enabled. BlueBorne would then be able to spread to any Bluetooth enabled devices, bouncing from one to another and even onto the bank’s computers.

The attack would not require victims to click on links or download infected files or to ‘pair’ with other devices to work. They would simply need to have Bluetooth enabled for BlueBorne to spread at an alarmingly fast and wide rate. The victims would be completely unaware their devices were infected, and victims would then be at risk from ransomware attacks or viruses that compromise security systems.

Ben Seri, head of research at Armis Security said: "No security mechanism is there to block incoming Bluetooth connections, so an attacker can bypass all of them completely.” While Michael Parker, Armis' head of marketing, added: "Imagine WannaCry Blue.” Armis outlined the devices at risk from the BlueBorne attack in a blog post. There are eight vulnerabilities that BlueBorne exploits, and the number of vulnerabilities a phone is at risk from varies between devices.

Armis said: “The vulnerabilities disclosed by Armis affect all devices running on Android, Linux, Windows, and pre-version 10 of iOS operating systems, regardless of the Bluetooth version in use. “This means almost every computer, mobile device, smart TV or other IoT device running on one of these operating systems is endangered by at least one of the eight vulnerabilities. “This covers a significant portion of all connected devices globally.”

Armis informed many of the affected companies about the flaws before informing the public, so they had a chance to push out patches. Apple fans will be pleased to know current versions of iOS are not vulnerable. Anything more recent than iOS 9.3.5 or for Apple TV users, version 7.2.2, is not vulnerable to BlueBorne.

Speaking about Android, Armis said: “All Android phones, tablets, and wearables (except those using only Bluetooth Low Energy) of all versions are affected by four vulnerabilities found in the Android operating system. “Examples of impacted devices are Google Pixel Samsung Galaxy, Samsung Galaxy Tab, LG Watch Sport, Pumpkin Car Audio System”.

To protect yourself against BlueBorne, ensure that your device (if affected) has been updated with a fix. And if you’re uncertain whether your device has been patched, it may be a good idea to turn Bluetooth off for a while.