bluetooth Archives

Apple Lets Stalkers Find YOU — ‘nRootTag’ Team Breaks AirTag Crypto

Richi Jennings | February 28, 2025 | AirTag, AirTags, Apple, Apple AirTag, apple bug, apple hack, apple hacker, Apple iCloud, BLE, bluetooth, Bluetooth low energy, Bluetooth Protocol, bluetooth security, Bluetooth vulnerability, Find My iPhone, ICloud, icloud hack, nRootTag, OpenHayStack, SB Blogwatch

Dumb Design + Crud Code = Privacy Panic: It’s been SEVEN MONTHS, but Tim’s crew is yet to fix the bugs ...

Security Boulevard

New Tracker Warning Features on iPhones & Androids, 2024 Verizon Data Breach Investigations Report

Tom Eston | May 20, 2024 | AI, AI Hype, AirTag, Android 6, Apple, bluetooth, Cyber Security, Cybersecurity, Data breaches, Data Privacy, Digital Privacy, Episodes, Exploits, google, Information Security, Infosec, ios, Malware, Phishing, Podcast, Podcasts, Privacy, Secret Trackers, security, , Stalking, technology, trackers, verizon, Verizon DBIR, Vulnerabilities, Weekly Edition

In episode 330 Tom, Scott, and Kevin discuss the new features for iPhones and Android phones designed to warn users about secret trackers, possibly aiding in identifying stalkers. The hosts discuss Apple ...

Shared Security Podcast

Tracking People via Bluetooth on Their Phones

Bruce Schneier | June 17, 2022 | academic papers, bluetooth, identification, Privacy, Stalking, tracking, Uncategorized

We’ve always known that phones—and the people carrying them—can be uniquely identified from their Bluetooth signatures, and that we need security techniques to prevent that. This new research shows that that’s not ...

Schneier on Security

‘Incompetent’ Tesla Lets Hackers Steal Cars — via Bluetooth

Richi Jennings | May 19, 2022 | BLE, bluetooth, Elon Musk, iot, Pressing a button is beyond most Tesla users capabilities, relay attack, SB Blogwatch, Tesla, TSLA

Tesla cars can be unlocked and stolen via a simple relay attack. The company shrugged and said it’s “a known limitation.” ...

Security Boulevard

Tracking People by their MAC Addresses

Bruce Schneier | September 6, 2021 | bluetooth, tracking, Uncategorized

Yet another article on the privacy risks of static MAC addresses and always-on Bluetooth connections. This one is about wireless headphones. The good news is that product vendors are fixing this: Several ...

Schneier on Security

Security Analysis of Apple’s “Find My…” Protocol

Bruce Schneier | March 15, 2021 | academic papers, Apple, bluetooth, crowdsourcing, de-anonymization, Privacy, Reverse Engineering, security analysis, tracking, Uncategorized

Interesting research: “Who Can Find My Devices? Security and Privacy of Apple’s Crowd-Sourced Bluetooth Location Tracking System“: Abstract: Overnight, Apple has turned its hundreds-of-million-device ecosystem into the world’s largest crowd-sourced location tracking ...

Schneier on Security

Hacking Christmas Gifts: Brushing with Bluetooth

Craig Young | February 17, 2021 | bluetooth, gift, Internet of things, IoT Security

If high-tech gadgets are on your holiday shopping list, it is worth taking a moment to think about the particular risks they may bring. Under the wrong circumstances, even an innocuous gift ...

The State of Security

BleedingTooth: Intel Discloses Early, Angering Linux Lovers

Richi Jennings | October 16, 2020 | BleedingTooth, bluetooth, BlueZ, Intel, Linux, SB Blogwatch

A Google researcher discovered a high-severity vulnerability in the Linux Bluetooth stack ...

Security Boulevard

New Bluetooth Vulnerability

Bruce Schneier | September 17, 2020 | Authentication, bluetooth, iPhone, man in the middle attacks, patching, Uncategorized, Vulnerabilities

There’s a new unpatched Bluetooth vulnerability: The issue is with a protocol called Cross-Transport Key Derivation (or CTKD, for short). When, say, an iPhone is getting ready to pair up with Bluetooth-powered ...

Schneier on Security

Bridgefy FAIL: Insecure for Use in Protests

Richi Jennings | August 25, 2020 | BLM, bluetooth, Bridgefy, mesh networking, Privacy, SB Blogwatch

Bridgefy, a young naïve startup, built an app for use-case A. But many people used it for use-case B, which needs a radically stronger security posture ...

Security Boulevard