Multiple Bluetooth Vulnerabilities Allowed Spoofing Legit Devices
Vendors are patching and deploying fixes for six different vulnerabilities in Bluetooth Core and Mesh specifications allowing MiTM attacks.
Vendors are patching and deploying fixes for six different vulnerabilities in Bluetooth Core and Mesh specifications allowing MiTM attacks.
Attackers could abuse vulnerabilities discovered in the Bluetooth Core and Mesh Profile specifications to impersonate legitimate devices during the pairing process and launch man-in-the-middle (MitM) attacks.
Like almost all antivirus vendors, Bitdefender acts as a Man-in-the-Middle (MitM) proxy to inspect secure HTTPS connections. However, a vulnerability was discovered in how Bitdefender protects users from invalid certificates, allowing attackers to run commands remotely. It's been fixed. Make sure to update.