Major Bluetooth Security Flaw Discovered, Leaves Millions of Devices Vulnerable

Daniele Antonioli from the Singapore University of Technology and Design, Nils Ole Tippenhauer from the CISPA Helmholtz Center for Information Security, and Kasper Rasmussen from the Department of Computer Science University of Oxford have published a paper entitled “The KNOB is Broken: Exploiting Low Entropy in the Encryption Key Negotiation Of Bluetooth BR/EDR,” where they disclose a new major Bluetooth security flaw. According to the security researchers, the new Bluetooth vulnerability could leave millions of Bluetooth-powered devices exposed to a new type of attack called KNOB (short from Key Negotiation Of Bluetooth) by allowing attackers to brute force the Bluetooth pairing procedure and spy on the data being shared between your Bluetooth devices, even if they were previously paired.