{"id":338090,"date":"2020-02-10T08:11:19","date_gmt":"2020-02-10T06:11:19","guid":{"rendered":"https:\/\/mybroadband.co.za\/news\/?p=338090"},"modified":"2020-02-10T08:13:31","modified_gmt":"2020-02-10T06:13:31","slug":"beware-android-security-flaw-lets-attackers-send-malware-over-bluetooth","status":"publish","type":"post","link":"https:\/\/mybroadband.co.za\/news\/security\/338090-beware-android-security-flaw-lets-attackers-send-malware-over-bluetooth.html","title":{"rendered":"Beware – Android security flaw lets attackers send malware over Bluetooth"},"content":{"rendered":"

A critical security flaw in Android could allow attackers to send harmful files to your smartphone via Bluetooth.<\/p>\n

The vulnerability was discovered by security researchers at ERNW<\/strong><\/a> in November 2019. Researchers said it could be exploited to by malicious actors to steal personal data or spread malware.<\/p>\n

“On Android 8.0 to 9.0, a remote attacker within proximity can silently execute arbitrary code with the privileges of the Bluetooth daemon as long as Bluetooth is enabled,” ERNW said.<\/p>\n

The researchers said that no actions are required from the user’s side – attackers only have to know the Bluetooth MAC address of the targeted device.<\/p>\n

“For some devices, the Bluetooth MAC address can be deduced from the WiFi MAC address,” ERNW added.<\/p>\n

Update now<\/h3>\n

The researchers strongly recommended that users of the affected operating systems install the latest February 2020 security patch from Android, which fixes the issue.<\/p>\n

In the event that an update is not yet available for your device, ERNW advised the following:<\/p>\n