Bluetooth attack warning
p2p news / p2pnet: Finland’s F-Secure and Secure Network commissioned the first Italian on the road experiment to reveal potential weaknesses in Bluetooth devices; and, to create a mini-guide for a better understanding of Bluetooth technology.
It also contained, “indications on minimum precautions for safe use,” says the resulting document, Going around with Bluetooth in full safety, because, “Knowing the vulnerabilities of Bluetooth enabled devices is just as important as understanding the technology potential.”
BlueBag, described by InfoWorld as a Bluetooth-sniffing computer, was stashed in a suitcase and rolled through train stations, a shopping center and even a computer security conference show floor to see how many Bluetooth-enabled devices could potentially be infected with a worm or a virus.
Devices with active Bluetooth in visible mode detected in the seven days of the experiment came to 1,405, including cellular and smart phones, PCs , notebooks, palm pilots, GPS navigators, printers and other various devices, say F-Secure and Secure Network.
“Most of the devices that we found were from the same manufacturers because their default Bluetooth connection setup is to be discoverable, which is very good for ease of use, but very bad for security,” InfoWorld has Secure Network’s Stefano Zanero saying.
By way of example, “bad guys could infect Bluetooth devices in a train station one morning, telling them to infect other equipment and seek out specific pieces of information,” and, “You can deliver your malware, leave it for a few hours, and then catch it when [the user] goes home,” the story has Zanero saying. “This makes it possible to perform the targeted attack that we have in mind.”
To avoid Bluetooth attacks, Zanero says users should check their settings and make sure their device is set to be “hidden” or “non-discoverable.”
To avoid becoming a victim, F-Secure and Secure Networkdrew suggest:
1. Be careful when downloading new software or applications from the Internet: before proceeding with the installation of new software or downloading new applications from the Internet, always verify the reliability of the source.
2. Pay attention to possible anomalies in the functioning of the device: considering that without an installed security application it is rather difficult to identify a virus, there are nonetheless situations that can alarm the user. Generally, in fact, viruses cause anomalies on the telephone like for instance a sudden increase in communication activity, an unusual consumption of the battery, the reception of undesired messages, the deletion of icons or the modification of the latter.
3. Remember to deactivate Bluetooth after use and if this is not possible, at least set the device on ‘hidden’ mode. This precaution ensures at leas a minimal level of security since it elongates the time necessary for a potential aggression.
4. Modify the cellular phone’s ID name: Many users tend to maintain the default ID name of their cell phones set by the producer which is usually associated with the specific model of the device. This simple information can allow and aggressor to associate to the device well-known weaknesses that can therefore be taken advantage of.
5. Always update security and antivirus software: to successfully contrast attacks, all security software must be updated. Software that is not updated is not useful since computer insecurity is in constant evolution and old software is not designed to face new issues. It is important to underline that ‘old’ refers to software that can be only one month old since software updated are made weekly.
6. Be careful when choosing PIN numbers to associate devices: too often the codes given by the manufacturer are maintained or, even worse, easily traceable information is used (birthdates for instance).
Digg this story.
Also See:
InfoWorld – ‘BlueBag’ PC sniffs out Bluetooth flaws, June 7, 2008
F-Secure and Secure Network – Going around with Bluetooth in full safety, May, 2006
==================
p2pnet newsfeeds for your site.
rss feed: http://p2pnet.net/p2p.rss
Mobile – http://p2pnet.net/index-wml.php
NOTE: p2pnet is being sued by Sharman Networks and Nikki Hemming, ceo of p2p application Kazaa. “The suit is a little odd, since P2PNet.net is a champion of peer-to-peer file-sharing, which is the same business that Kazaa is in,” says The Globe & Mail. If you’d like to help p2pnet, or find out more, please go here.
