Bluetooth Attacks

Overview

Bluetooth attacks refer to unauthorized actions or exploits targeting Bluetooth-enabled devices to gain unauthorized access, control, or extract sensitive information. These attacks can exploit vulnerabilities in the Bluetooth protocol or implementation to compromise the security and privacy of Bluetooth devices.

Common Bluetooth attacks

Bluejacking: Sending unsolicited messages or spam to Bluetooth devices in close proximity.
Bluesnarfing: Unauthorized access to the data on a Bluetooth-enabled device, such as contacts, messages, or other personal information.
Bluebugging: Gaining complete control over a Bluetooth device, allowing the attacker to make calls, send messages, or access data without the user's knowledge.
Bluetooth Denial of Service (DoS): Flooding a Bluetooth device with connection requests or malformed packets, causing it to become unresponsive or crash.
Man-in-the-Middle (MITM) Attack: Intercepting and altering Bluetooth communication between two devices to eavesdrop on or modify the exchanged data.
Bluetooth Impersonation Attacks: Pretending to be a trusted Bluetooth device to deceive the target device and gain unauthorized access.

Bluetooth Adaptors

GreatScottGadgets Ubertooth One

Ubertooth One is an open source 2.4 GHz wireless development platform suitable for Bluetooth experimentation. Ubertooth One ships with a 2.4 GHz dipole antenna with an RP-SMA connector.

Ubertooth One - Great Scott Gadgets

Ubertooth One by Great Scott GadgetsUbertooth One

Tools

Hcitool

Snoop on Bluetooth Devices Using KaliWonderHowTo

Bettercap

How to Target Bluetooth Devices with BettercapWonderHowTo

BrakTooth

GitHub - Matheus-Garbelini/braktooth_esp32_bluetooth_classic_attacks: A Series of Baseband & LMP Exploits against Bluetooth Classic ControllersGitHub

ASSET Research Group: BrakTooth

Bluesmack

GitHub - crypt0b0y/BLUETOOTH-DOS-ATTACK-SCRIPT: Script for quick and easy DOS-attacks on bluetooth devices for pentest purposesGitHub

Bluetoothctl

How to Manage Bluetooth Devices on Linux Using bluetoothctlMUO

Spooftooph

spooftooph | Kali Linux ToolsKali Linux

Blueborne

BlueBorneArmis

Bluesniff

GitHub - mrx04programmer/Bluesniff: Herramienta orientada a pentesting en la zona bluetooth.GitHub

Bluesnarfing

What Is Bluesnarfing and How Can You Prevent It?MUO

Bluejacking

Bluejacking: How Bluetooth Can Be Used to Hack Your DevicesMUO

More Tools

Wireless Security - Bluetooth Hacking Tools

https://hardwear.io/usa-2019/presentations/Bluetooth-Hacking-Mike%20Ryan-hardwear-io-usa-2019.pdf

Protect yourself from Bluetooth attacks

To protect yourself from Bluetooth attacks, consider the following measures:

Keep your Bluetooth devices updated with the latest firmware and security patches.
Disable Bluetooth when not in use or set it to "non-discoverable" mode.
Avoid pairing with unknown or untrusted Bluetooth devices.
Use strong and unique PINs or passwords for Bluetooth device pairing.
Be cautious of suspicious or unexpected Bluetooth connection requests or messages.
Regularly review and manage the list of paired Bluetooth devices on your device.
Use Bluetooth in secure environments and be aware of the potential risks in public or crowded areas.

It's important to stay informed about the latest security recommendations and best practices to protect yourself from Bluetooth attacks, as vulnerabilities and attack techniques may evolve over time.

Bluetooth Security: 5 Ways to prevent Bluetooth attacks with Build38Build38

PreviousRFID / NFC Attacks NextMouseJack Attacks

Last updated 8 months ago