New BLUFFS attack lets attackers hijack Bluetooth connections

Researchers at Eurecom have created six brand-new attacks, collectively referred to as “BLUFFS,” that have the ability to breach Bluetooth session confidentiality and enable man-in-the-middle (MitM) and device impersonation.

The attacks’ discoverer, Daniele Antonioli, explains that BLUFFS uses two previously undiscovered weaknesses in the Bluetooth standard concerning the generation of session keys to decrypt exchange data.

These vulnerabilities are architectural in nature, affecting Bluetooth at a fundamental level rather than being limited to particular hardware or software configurations. Under the tracking ID CVE-2023-24023, the problems affect Bluetooth Core Specifications read more New BLUFFS attack lets attackers hijack Bluetooth connections.

Get up to date on the latest cybersecurity news and enhance your knowledge of cybersecurity with our thorough coverage of the dangers, breaches, and solutions.

Leave a Reply

Your email address will not be published. Required fields are marked *