Skip to main content

‘BlueBorne’ Bluetooth vulnerability addressed by Android’s September security patch

Yesterday, security firm Armis Labs disclosed a Bluetooth exploit dubbed “BlueBorne.” This insidious vulnerability puts billions of Android devices, among many others, with Bluetooth enabled at risk for take over. Fortunately, Google has issued a fix as part of the September security patch, but it will undoubtedly take a while for OEMs to push their updates.

“BlueBorne” only requires that a Bluetooth connection on a device be active. No user action is required, with devices not even needing to be paired. All a hacker needs to do is be in Bluetooth range of your device to take it over.

Once that occurs, a nefarious party will have full access to your phone, with one demo on a Google Pixel showing the phone being remotely accessed. For instance, apps — like the camera — and the file system can be accessed all while being “completely undetected by the user.”

Besides Android devices, Windows, Linux, and older versions of iOS are affected, with Armis Labs estimating 5.3 billion devices being vulnerable. Two billion of those are Android and include phones, tablets, and wearables. Armis cites a range of specific Android devices being vulnerable:

  • Google Pixel
  • Samsung Galaxy
  • Samsung Galaxy Tab
  • LG Watch Sport
  • Pumpkin Car Audio System

Google has addressed the issue on Android with the September security patch that is rolling out now to the Pixel and Nexus devices. The patch for partners covers 6.0 Marshmallow and 7.0 Nougat, but it will likely take several months for all devices to get the fix.


Check out 9to5Google on YouTube for more news:

FTC: We use income earning auto affiliate links. More.

You’re reading 9to5Google — experts who break news about Google and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Google on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel

Comments

Author

Avatar for Abner Li Abner Li

Editor-in-chief. Interested in the minutiae of Google and Alphabet. Tips/talk: abner@9to5g.com

Manage push notifications

notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications
notification icon
We would like to show you notifications for the latest news and updates.
notification icon
You are subscribed to notifications