Login
Login

Bluebugging

{{Short description|Bluetooth cyberattack}}

File:BluetoothLogo.svg

Bluebugging is a form of Bluetooth attack often caused by a lack of awareness. It was developed after the onset of bluejacking and bluesnarfing. Similar to bluesnarfing, bluebugging accesses and uses all phone features but is limited by the transmitting power of class 2 Bluetooth radios, normally capping its range at 10–15 meters. However, the operational range can be increased with the use of a directional antenna.{{cite journal

|author=Bluejackingtools

|date=2005-08-04

|title= Bluebugging and Bluejacking

|publisher=Bluejackingtools

|url=http://www.bluejackingtools.com/bluebugging

}}{{cite news |title=Bluetooth Devices Easily Hacked |publisher=Cape Town 24 News |url=http://www.news24.com/SciTech/News/Bluetooth-devices-easily-hacked-20071023 |date=2007-10-23 |url-status=live |archive-url=https://web.archive.org/web/20160304071930/http://www.news24.com/SciTech/News/Bluetooth-devices-easily-hacked-20071023 |archive-date=2016-03-04 |access-date=2012-06-26 }}

History

Bluebugging was developed by the German researcher Martin Herfurt in 2004, one year after the advent of bluejacking. Initially a threat against laptops with Bluetooth capability,[http://seclists.org/fulldisclosure/2006/Jun/551 "Buffer Overrun in Toshiba Bluetooth Stack for Windows"], Seclists.org; retrieved 3 April 2011 it later targeted mobile phones and PDAs.

Bluebugging manipulates a target phone into compromising its security, this to create a backdoor attack before returning control of the phone to its owner. Once control of a phone has been established, it is used to call back the hacker who is then able to listen in to conversations, hence the name "bugging".{{Cite journal|last1=Dagon|first1=D.|last2=Martin|first2=T.|last3=Starner|first3=T.|date=2004-10-01|title=Mobile Phones as Computing Devices: The Viruses are Coming!|url=https://ieeexplore.ieee.org/document/1369156|journal=IEEE Pervasive Computing|language=en|volume=3|issue=4|pages=11–15|doi=10.1109/MPRV.2004.21|s2cid=14224399|issn=1536-1268|url-access=subscription}} The Bluebug program also has the capability to create a call forwarding application whereby the hacker receives calls intended for the target phone.{{cite magazine |author=Gary Legg |date=2005-08-04 |title=The Bluejacking, Bluesnarfing, Bluebugging Blues: Bluetooth Faces Perception of Vulnerability |magazine=EE Times |url=http://www.eetimes.com/design/communications-design/4017819/The-Bluejacking-Bluesnarfing-Bluebugging-Blues-Bluetooth-Faces-Perception-of-Vulnerability |access-date=2009-03-07}}

A further development of Bluebugging has allowed for the control of target phones through Bluetooth phone headsets, It achieves this by pretending to be the headset and thereby "tricking" the phone into obeying call commands. Not only can a hacker receive calls intended for the target phone, they can send messages, read phonebooks, and examine calendars.

See also

References

{{Reflist}}

External links

  • [http://www.bluetooth.org Bluetooth Special Interest Group Site (includes specifications)]
  • [http://www.bluetooth.com Official Bluetooth site aimed at users]
  • [http://coffer.com/mac_find/ Bluetooth/Ethernet Vendor MAC Address Lookup]
  • [http://www.bluesnarf.blogspot.com Bluebugging Video and description]

{{Authority control}}

Category:Bluetooth

Category:Hacking (computer security)