Language Selection

English French German Italian Portuguese Spanish

Bluetooth Mess: Almost Everything Affected

Filed under
Security
  • ​Linux gets blasted by BlueBorne too

    he security company Armis has revealed eight separate Bluetooth wireless protocol flaws known collectively as BlueBorne. This new nasty set of vulnerabilities have the potential to wreak havoc on iPhones, Android devices, Windows PC, and, oh yes, Linux desktops and server, as well.

    While BlueBorne requires a Bluetooth connection to spread, once the security holes are exploited, a single infected device could infect numerous devices and computers in seconds. Attacks made with BlueBorne are silent, avoid activating most security measures, and require nothing from new victims except that their devices have Bluetooth on.

  • Linux Impacted By Information Leak & Remote Code Execution Via Bluetooth

    Armis Labs has gone public today with "Bluebourne", an IoT-focused attack vector via Bluetooth. This Bluetooth attack does not require the targeted device to even be paired with the attacker or on discoverable mode, making it more frightening.

  • The IoT Attack Vector “BlueBorne” Exposes Almost Every Connected Device

    Armis Labs revealed a new attack vector endangering major mobile, desktop, and IoT operating systems, including Android, iOS, Windows, and Linux, and the devices using them.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

today's howtos

Graphics: Texture Compression, Enlightenment Foundation Libraries (EFL), and AMD FreeSync

  • Unity Continues Crunching More Out Of Crunch Texture Compression
    Unity is one of the big public users of the open-source Crunch DXT texture compression library. While it's no longer maintained by Rich Geldreich / Binomial, Unity has continued advancing this open-source code to further improve the compression ratio and speed. For months Unity has been talking about their promising findings with Crunch. But this is the project that Rich Geldreich, the former Valve developer, previously expressed regret having open-sourced all of it. While he is on to working on better and more advanced technologies at his Binomial startup, Unity is working to squeeze more out of this open-source library.
  • Improving EFL Graphics With Wayland Application Redraws
    Under X, application redraws are tricky to do without tearing because content can be updated at any chosen time with no clear feedback as to when the compositor will read it. EFL uses some clever tricks to this end (check out the state of the art X redraw timing for yourself), but it’s difficult to get right in all cases. For a lot of people this just works, or they’re not sensitive to the issue when it doesn’t.
  • Improved Wayland Application Redraws Coming To Enlightenment's EFL
    Samsung's Open-Source Group has been working on making their Wayland support in the Enlightenment Foundation Libraries (EFL) even better. The latest Wayland work on the Enlightenment/EFL front has been improving the application redraw process. The EFL toolkit with the upcoming v1.21 release will now be hooking into Wayland's frame callbacks to better dealing with drawing, only drawing when necessary, and doing so without the possibility of tearing.
  • AMD FreeSync For Tear-Free Linux Gaming - Current State In 2017
    If you are thinking of gifting yourself (or someone else) a FreeSync-compatible monitor this holiday season, here's a look at how the AMD FreeSync support is working right now, the driver bits you need to be aware of, and how it's all playing out for those wanting to use this tear-free capability for Linux gaming.

KStars 2.8.9 is released!

Here comes the last KStars release for 2017! KStars v2.8.9 is available now for Windows, MacOS, and Linux. Robert Lancaster worked on improving PHD2 support with Ekos. This includes retrieving the guide star image, drift errors and RMS values, among other minor improvements and refactoring of the Ekos PHD2 codebase to support future extensions. Read more

Security: Mirai, Vista 10, Starbucks, and Hacking Team Investigation

  • Mirai IoT Botnet Co-Authors Plead Guilty

    The U.S. Justice Department on Tuesday unsealed the guilty pleas of two men first identified in January 2017 by KrebsOnSecurity as the likely co-authors of Mirai, a malware strain that remotely enslaves so-called “Internet of Things” devices such as security cameras, routers, and digital video recorders for use in large scale attacks designed to knock Web sites and entire networks offline (including multiple major attacks against this site).

  • Google Researcher Finds Flaw in Pre-Installed Windows 10 Password Manager
    Google security researcher Tavis Ormandy, who has previously discovered, reported, and disclosed several major bugs in Windows and its features, came across a new security vulnerability affecting Microsoft users. This time, the flaw exists in the Keeper password manager that comes pre-installed in some Windows 10 versions, with Ormandy explaining that it’s similar to a vulnerability that he discovered in August 2016. “I remember filing a bug a while ago about how they were injecting privileged UI into pages,” Ormandy explained on December 14. “I checked and, they're doing the same thing again with this version,” he continues.
  • Starbucks Wi-Fi Turned People’s Laptops into Cryptocurrency Miners
    The free Wi-Fi that the Buenos Aires Starbucks offers to its customers was being used to mine for cryptocurrency, and what’s worse, it used people’s laptops to do it. The whole thing was discovered by Stensul CEO Noah Dinkin who actually paid a visit to the store and wanted to browse the web using the free Wi-Fi, only to discover that his laptop was unknowingly converted into a cryptocurrency miner. He then turned to Twitter to ask Starbucks if they know about the what he described as bitcoin mining taking place without customers knowing about it. “Hi Starbucks, did you know that your in-store wifi provider in Buenos Aires forces a 10 second delay when you first connect to the wifi so it can mine bitcoin using a customer's laptop? Feels a little off-brand,” he said in his tweet.
  • Italian Prosecutor Makes Request to Close Hacking Team Investigation
    The damaging data breach that exposed the secrets of an infamous surveillance tech company might go unsolved forever. After more than two years, the Italian prosecutor who was investigating the attack on the Milan-based Hacking Team has asked the case to be dismissed, according to multiple sources. On Monday, the Milan prosecutor Alessandro Gobbis sent a notice to the people under investigation informing them that he had sent the judge a request to shut down the investigation, according to a copy of the document obtained by Motherboard.