RSS for MAKE
Here’s a short video in which Joshua Wright demonstrates how a Bluetooth headset can be hijacked, allowing audio to be captured or sent to the device:
Few users realize that Bluetooth headsets can be exploited granting a remote attacker the ability to record and inject audio through the headset while the device is not in an active call. SANS Institute author and senior instructor Joshua Wright demonstrates.
All that is necessary is knowing the device address, which can be easily sniffed, and the secret pin, which defaults to 0000. The headset audio is tapped while not in a call, so any room conversation the headset’s mic can pick up can potentially be listened to remotely.
thanks for the video, it is very good information.
LAME!
holy crap, that dude is a freaking sissy
holy crap, that sissy just listened to you having phone sex with your gay boyfriend
Nicely done, well presented.
, Yeah I have a wireless blootooth headset, and its great. i think they started selling like 30% more the last year., I also posted it on my blog with extra coments,www.opentopix.com/topic/gadgets/bluetooth-wireless-headsets-boom
All 3 of my bluetooth headsets will only pair when it is put in a special “pair mode” (typically by holding the power button for 10 seconds or more).
I’d be interested if this attack will work on devices with this “feature”.
umm, I call BS for a few reasons.
1) The pin is used to associate two devices (the handshake) not for ongoing communication.
2) Once the headset has been associated to the device, it cannot be re-associated to another device while the first device is still active. So I would have to turn my phone off.
3) Even though you may be able to send a signal with that super nifty antenna, you most likely will not be able to receive the signal back unless they have a similar antenna.
You’re more at risk with the FBI being able to remotely activate your mic.
Brown University Baby!
wow, brown university…
did he get her number
ghey is the correct terminology, kidmidnight.
Didnt even watch the video because it sounds so retarded.
very good blog
lame
This guy is more annoying and effeminate than me !
Recently,we have tailored the unique wow gold
ignore the other comments. good presentation. good info. those who think that this is lame are skr1pt k1dd1ez who just want it point-n-click so they can use it…
Follow MAKE
From the Maker Shed
Launch Price: $75.99
RedPark TTL iOS Cable Breakout Pack
Exclusively in the Maker Shed, this updated Redpark Breakout Pack for Arduino and iOS makes interfacing your iPhone, iPad, or iPod touch with the real world easy! This bundle includes the new RedPark TTL Cable for iOS so a TTL adapter (and soldering) is no longer required.
Read More →