Critical Bluetooth security bug discovered. Protect yourself with a quick update

By Mathew Katz August 16, 2019

Researchers have discovered a major new security flaw in Bluetooth, which could leave millions of devices at risk of a malicious hack.

The security vulnerability, which was recently discovered by a team at the Center for IT-Security, Privacy, and Accountability (CISPA), essentially allows an attacker to interfere when two devices try to connect, allowing a hacker to “break” Bluetooth security without anyone knowing.

Recommended Videos

That could allow a hacker to funnel data from any connected devices — from the music you hear through your headphones to the words you type on a Bluetooth keyboard — as long as they are within range.

Researchers have named the exploit KNOB — Key Negotiation of Bluetooth — since it can occur when two devices are “negotiating” a secure connection.

“The KNOB attack is a serious threat to the security and privacy of all Bluetooth users,” the researchers wrote in a paper released Tuesday. “We were surprised to discover such fundamental issues in a widely used and 20 years old standard.”

The issue is so serious that Bluetooth SIG, the international body in charge of standards for Bluetooth connections, issued a security warning and has already released a fix — though it’s up to manufacturers to implement it.

“We evaluate our implementation on more than 14 Bluetooth chips from popular manufacturers such as Intel, Broadcom, Apple, and Qualcomm,” the researchers wrote. “Our results demonstrate that all tested devices are vulnerable to the KNOB attack.”

While there’s no sign that anyone has used this exploit to hack someone’s devices, it leaves nearly every Bluetooth device vulnerable. If you have a Bluetooth device, you should make sure that you update it to the latest drivers as soon as possible.

How to protect yourself from the KNOB attack

Luckily, most of the affected chip manufacturers, like Intel and Apple, have already implemented a fix and pushed out a new security update. Here are the potentially affected companies and how you can update your hardware:

Regardless of whether there’s been a newly discovered exploit, it’s always a good idea to keep your software and firmware up-to-date. Having the latest security updates can protect you from any potential hacks and keep your data — and devices — safe.

Topics

Former Digital Trends Contributor

Mathew is a news editor at Digital Trends, specializing in covering all kinds of tech news — from video games to policy. He…

Mobile

I record interviews for work. These are my favorite free recorder apps

The iPhone 14 Pro and Google Pixel 7 Pro's voice recording apps running together.

The Voice Recorder app on a phone (left) and the Voice Memos on another phone Andy Boxall / Digital Trends

Before you head to the app store on your phone to buy a voice-recording app, take a moment to consider the apps that may already be installed on your phone. Why? In my experience, they're likely all you really need. I’ve recorded interviews and voice-overs for work for years, and I’ve found the two best examples come preinstalled on your phone already, so they’re entirely free to use.

Mobile

The best Samsung Galaxy Z Fold 5 cases: 10 best ones so far

Two Galaxy Z Fold 5 phones next to each other -- one is open and one is closed.

Samsung’s next-generation foldable is here with the Samsung Galaxy Z Fold 5. This iteration has some notable improvements, including a new hinge design that eliminates the gap from previous generations when the device was folded. You also get a 6.2-inch HD+ Dynamic AMOLED 2X display on the outside while having a 6.7-inch QXGA+ Dynamic AMOLED 2X display on the inside, with both screens having a 120Hz refresh rate. In other words, they're about as nice as you could ask for.

The Galaxy Z Fold 5 is made with premium materials, and the triple-lens camera system packs in a 50MP main shooter, 10MP telephoto with 3x optical zoom, and a 12MP ultrawide lens. There’s a 10MP selfie camera on the front cover, and a 4MP camera on the inner display. You also get a Snapdragon 8 Gen 2 for Galaxy chip inside for the best performance and power efficiency.

Mobile

Google Pixel Tablet just got its first big discount and it’s worth a look

Google Pixel Tablet on its charging dock.

Tablets are a dime-a-dozen these days, with offerings from all the great brands including Apple, Samsung, Lenovo, and more. So, if you really want to stand out in a sea of similar tech, you need to do things a little differently. That's what Google's Pixel Tablet offers. How? It comes with a unique speaker dock that can be used to both charge the device and offer room-filling sound -- almost like a smart speaker add-on. Better yet, when your Pixel Tablet is docked it benefits from the Hub Mode, turning the device into a smart display, with digital photo frame support, smart home controls, and hands-free Google functionality. Of course, it could set you back at full price, normally $499 unless you find it included in a roundup of the best Google Pixel deals. Well, guess what? Thanks to a Best Buy Google Pixel Tablet deal, you can get it today for $439 and save $60. Hurry, though, it's part of Best Buy's recent 48-hour sale so it won't stick around for long.

Why you should buy the Google Pixel Tablet
Okay, okay, so in our Google Pixel Tablet review, Joe Maring did give it less than stellar remarks, but he called out its reliable fingerprint sensor, comfortability during use and excellent speaker dock. Honestly, how many tablets come with a matching speaker dock that transforms the entire experience? This tablet also marks a "lot of firsts" for Google, as it's the first tablet from the company in nearly five years, the first Android tablet in eight years, and can be converted into a smart home display with the speaker dock. All of which are notable milestones.