The ‘BLESA’ flaw affects the reconnection process that occurs when a device moves back into range after losing or dropping its pairing, Purdue researchers said.
The “BLURtooth” flaw allows attackers within wireless range to bypass authentication keys and snoop on devices utilizing implementations of Bluetooth 4.0 through 5.0.
A host of unpatched security bugs that allow BIAS attacks affects Bluetooth chips from Apple, Intel, Qualcomm, Samsung and others.
The flaw was recently patched in Android’s February Security Bulletin.
The notebook maker is warning users of three separate vulnerabilities.
Researchers are warning that unpatched flaws found in the Hickory Smart Bluetooth Enabled Deadbolt allow an attacker with access to a victim’s phone to break into their houses.
Identifying tokens and random addresses, meant to create anonymity, do not change in sync on some devices — opening an attack vector.
Pentesters say a keyless smart lock made by U-tec, called Ultraloq, is neither ultra or secure.
Google is offering free replacements for its Titan Security Key after discovering a misconfiguration in its pairing protocols.
In all, Google reported 45 bugs in its March update with 11 ranked critical and 33 rated high.