The Car Whisperer, Bluesnarfing for hands-free
posted Aug 2nd 2005 1:20PM
Just when you felt comfortable about having your Bluetooth hands-free device with you in the car, along comes Car
Whisperer, software debuted at Defcon with one goal: to subvert your hands-free lifestyle. Sure, it's not much more
than a simple Bluesnarf attack, but what's
clever is that the software preys only on those most particularly weak of security Bluetooth devices, the hands-free.
Since most have a passkey of 0000 or 1234, the Car Whisperer merely waits sending out pings for hands-free devices.
When one comes into range, it tries to negotiate a connection wherein Car Whisperer will pass it the predicted passkey,
and allow the attacker to listen in on conversations in the car (but not calls), or inject audio into the line. Good
thing for everyone using Bluetooth that it's (relatively) short range—a car driving at 65mph using even longer range
Class I Bluetooth has come and gone in less than a few seconds.
[Via The Reg]
"a car driving at 65mph using even longer range Class I Bluetooth has come and gone in less than a few seconds"
unless you're driving next to them.
LOL! If the guy ahead of you cuts you off, you can yell at him!
Is this a way to get around the partnership setup process? Doesn't the device have to be in the "discoverable" mode to even get to the passcode phase? I never leave my headset in the discoverable mode, so am I safe?
maybe, but there was some noice not to long ago about inserting a fake error in the connection between devices and then sneak in while the devices where setting up a new connection.
You're right Nelson but I'd say most 'average' users flip on their bluetooth and connect to their headset or car without reading their manual or hearing this advice. So you and I and most of engadget's readers are safe for now.
Hint: Start changing those passkeys.
I've said it once and I'll say it again. Anything wired is more secure, ALOT more. That includes your internet connection, phone line....etc.
586519
I would think this would affect ppl in public places rather than in cars traveling at 65mph. Parks, coffee houses... lots of laptops and cell phones in mixed company there.
Regardless of this, I'm looking forward to getting my first BT phone later on this year and ditching the #$&@ing wires that get tangled up each time I get in the car.
Speaking of BT, anyone know of a combo hands-free/iPod stereo headphones? I've seen the wired version, but would rather have a BT version.
look all over engadget, chillywilly. hell, there looks to be one listed at the front page as i write this.
I'm looking forward to getting my first BT phone later on this year and ditching the #$&@ing wires that get tangled up each time I get in the car.
---------------------------------------------
Sounds like a plan.
This could be really dangerous if the range was improved and it was to fall into the wrong hands. Just think about audio advertisements from roadside billboards being piped directly into your Bluetooth gear.
Originally posted by Twist:
"Just think about audio advertisements from roadside billboards being piped directly into your Bluetooth gear."
These bluetooth devices require a passcode. Even if the passcode is well-known, it's still a "protected access network," and connecting to it is like connecting to an open Wi-Fi connection, right? And we know leaching off of other's WiFi can get you busted... what's to say that this is any different and that the same laws wouldn't apply? I don't think advertising through this medium will happen anytime soon unless people willingly open their devices to the Audio Billboards.
So, when you get piped an advertisement and get a scare because you didn't know it was coming and have a crash...
Though I do wish that more local wireless devices would have an option to 'allow local chat'. Meaning that you could anonymously send & receive messages to people in the local area. Of course, defaults to the 'off' position.
most bluetooth handsfree devices have to be manually set into pairing mode. this is more fantasy.