Source: National Cyber Security – Produced By Gregory Evans
Security researchers are warning that privacy issues in the Bluetooth Low Energy (BLE) protocol could make users’ smart devices easily trackable from potentially long distances. Context Information Security announced the findings of new research in a post at the end of last week. In just half an hour hanging around Canary Wharf Underground station, the team used a specially built proof-of-concept Android app to spot 149 devices, including 26 FitBits, two Jawbones, two Nike products and “a lot of iPhones.” The problem lies with the fact that although most BLE-supporting smart devices have a ‘random’ MAC address, that address is often fixed, making it easy to identify and track. BLE was designed for apps which need to constantly beam out signals without running the battery down, with said packets sometimes even containing the device or user’s name, Context claimed. This isn’t just a privacy risk but could be used by attackers to help with social engineering as part of a targeted cyber attack, or even for a ‘physical’ crime if a criminal knew a victim’s movements, the firm said. What’s more, although the range of these devices is around 100 meters, with a “high gain directional antenna” it was possible […]
For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com
The post Researchers in Bluetooth IoT Privacy Warning appeared first on National Cyber Security.
View full post on National Cyber Security