all InfoSec news
BLEWhisperer: Exploiting BLE Advertisements for Data Exfiltration. (arXiv:2204.08042v2 [cs.CR] UPDATED)
July 26, 2022, 1:20 a.m. | Ankit Gangwal, Shubham Singh, Riccardo Spolaor, Abhijeet Srivastava
cs.CR updates on arXiv.org arxiv.org
Bluetooth technology has enabled short-range wireless communication for
billions of devices. Bluetooth Low-Energy (BLE) variant aims at improving power
consumption on battery-constrained devices. BLE-enabled devices broadcast
information (e.g., as beacons) to nearby devices via advertisements.
Unfortunately, such functionality can become a double-edged sword at the hands
of attackers. In this paper, we primarily show how an attacker can exploit BLE
advertisements to exfiltrate information from BLE-enable devices. In
particular, our attack establishes a communication medium between two devices
without requiring …
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Engineer - Data Services, Cyber Defence
@ ANZ Banking Group Limited | Quezon City, PH
IT Security Analyst (m/f/d) - Focus SIEM
@ flatexDEGIRO | Neuss, NW, DE, 41460
Compliance Manager - Product Security Compliance & Risk Team
@ Red Hat | Remote, Ireland
Senior Information Security Engineer
@ Eurofins | Barcelona, Spain