all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New BLUFFS Bluetooth Attack Expose Devices to Adversary-in-the-Middle Attacks

Add to bookmarks
Dec. 4, 2023, 1:16 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

New research has unearthed multiple novel attacks that break Bluetooth Classic's forward secrecy and future secrecy guarantees, resulting in adversary-in-the-middle (AitM) scenarios between two already connected peers.
The issues, collectively named BLUFFS, impact Bluetooth Core Specification 4.2 through 5.4. They are tracked under the identifier CVE-2023-24023 (CVSS score: 6.8)

adversary adversary-in-the-middle aitm attack attacks bluetooth connected cve cvss cvss score devices expose forward future impact novel research score secrecy under

Visit resource

More from thehackernews.com / The Hacker News

AI Company Hugging Face Notifies Users of Suspected Unauthorized Access 21 hours ago | thehackernews.com
access advisory artificial artificial intelligence +9
Mysterious Cyber Attack Took Down 600,000+ Routers in the U.S. 1 day, 12 hours ago | thehackernews.com
access attack bricked cyber +12
Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices 1 day, 15 hours ago | thehackernews.com
attacks critical critical systems cyber +18
Beyond Threat Detection – A Race to Digital Security 1 day, 18 hours ago | thehackernews.com
attack attack surface benefits beyond +15
Russian Hackers Target Europe with HeadLace Malware and Credential Harvesting 1 day, 18 hours ago | thehackernews.com
actor apt28 bear blizzard +24
OpenAI, Meta, TikTok Disrupt Multiple AI-Powered Disinformation Campaigns 1 day, 20 hours ago | thehackernews.com
abuse ai-powered artificial artificial intelligence +21
CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw 2 days, 11 hours ago | thehackernews.com
actively exploited agency alerts bug +34
FlyingYeti Exploits WinRAR Vulnerability to Deliver COOKBOX Malware in Ukraine 2 days, 12 hours ago | thehackernews.com
access actor anxiety called +20
Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors 2 days, 13 hours ago | thehackernews.com
access actor alert asia +23

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com