Armis discovered BlueBorne, a new attack vector, endangering major mobile, desktop, and IoT operating systems, including Android, iOS, Windows, and Linux, and the devices using them.
It includes 8 zero-day vulnerabilities, 4 of them critical. With BlueBorne, a hacker can take over your device or set up a man-in-the-middle attack. It leverages the most serious exploit in Bluetooth to date, and spreads through the air (airborne). You don’t need to pair with the attacking device. You Bluetooth just needs to be on.
Key points about BlueBorne:
- Penetrates secure "air-gapped" networks
- Spreads laterally to adjacent devices
- Impacts devices from Samsung, Google, Windows, Apple and more
- Microsoft, Android, Linux, and iOS are issuing updates
This app was specifically designed to scan your device and see if it is vulnerable. It can also scan and locate devices that could be vulnerable to the BlueBorne attack vector. Simply use the screen of your mobile device as a viewfinder to scan your device or locate connected devices in your environment. The viewfinder will alert you if this device could be a carrier to a BlueBorne attack.
More than 5 billion devices could be vulnerable to “BlueBorne” attacks, but patches exist for Apple, Android and Windows devices. Be sure that your patches are up to date.
Armis’ mission is to eliminate the IoT security blind spot, letting enterprises use IoT and unmanaged devices safely and securely.