If you are using the Bluetooth technology of your smartphone, it is advisable to be vigilant : a critical flaw has been discovered, and, especially, the details have been made public on the 12th of September 2017 by the security firm Armis. There would be potentially millions of smartphones and other devices vulnerable, well that a fix has already been deployed for some of them.

These are especially some of the iPhone and the Android smartphones that may still be vulnerable. If Google has given a fix for the fault to the builders, the giant of Mountain View does not control the deployment.

A quick hacking, but in spite of everything complicated

The security specialist Armis has published a video on Youtube in which its experts use this flaw discovered in Bluetooth to hack a mobile phone. It has been called “Blueborne ” and allows the hacker very quickly a smartphone. The hacker can take control of the device and make it do simple tasks and complex, or even steal personal information.

Piracy is not invisible : the attack “wake up” the smartphone that would be on standby, which would allow the user attentive to realize that there is a problem with his terminal. The flaw, for its part, does not seem to be able to be used to create a massive attack since the operation depends on the various versions of the OS and the device. But it could be used for a targeted hacking.


A hotfix is deployed to a fault commonplace in the Bluetooth

It would seem that Apple devices running iOS10 are not affected, those running an earlier version of the mobile OS of Apple. Microsoft has deployed a fix for the Windows devices in July 2017, while Google has made a patch for multiple versions of Android. But if the giant has deployed for its smartphones Pixel, it was able to provide the fix for manufacturers who need to deploy the update to their customers. This step might take a few months.

The concern, at the level of this fault compared to HeartBleed in that it forced the device has to provide the confidential information concerning and relating to its owner, is linked to the multiplication of connected devices in the Bluetooth as the speakers portable. As always, when a smartphone automatically receives security updates, these connected devices are likely to never be updated by their manufacturer or owner.