Bluetooth Headphone Jacking: A Key to Your Phone [video]
https://media.ccc.de/v/39c3-bluetooth-headphone-jacking-a-key-to-your-phone
#HackerNews #Bluetooth #Headphone #Jacking #Phone #Security #Video #Tech #Awareness
Fox Trenton 🎱
and 5 others
boosted
The "Bluetooth Headphone Jacking" talk at #39c3 was awesome, too. They reversed a popular SOC that powers Bluetooth earbuds and headphones.
They found that (even without being paired to the headphone), they could dump flash and RAM from the device. Then they dumped a bunch of info from the device - e.g. the #Bluetooth address and "master" encryption keys used for the communication with paired devices (e.g. a #phone).
Then they impersonated the headphone from their laptop and connected to the phone (pretending to be the headphone).
The headphone (or the laptop impersonating the phone) has permissions to do some things on the phone, e.g. accept calls, increase/decrease volume, etc.
Then they started recovering access a #WhatsApp account via some account recovery mechanisms. That required some one-time security key which would normally be delivered via SMS, but that could be delivered via phone call as a fallback option, too. Since the phone thought it was connected to the Bluetooth headphone, phone call audio would go to the laptop via Bluetooth.
As the cherry on top, they escalated into the victim's #Amazon account.
Scary shit. #YouCannotBeParanoidEnough #security
The "Bluetooth Headphone Jacking" talk at #39c3 was awesome, too. They reversed a popular SOC that powers Bluetooth earbuds and headphones.
They found that (even without being paired to the headphone), they could dump flash and RAM from the device. Then they dumped a bunch of info from the device - e.g. the #Bluetooth address and "master" encryption keys used for the communication with paired devices (e.g. a #phone).
Then they impersonated the headphone from their laptop and connected to the phone (pretending to be the headphone).
The headphone (or the laptop impersonating the phone) has permissions to do some things on the phone, e.g. accept calls, increase/decrease volume, etc.
Then they started recovering access a #WhatsApp account via some account recovery mechanisms. That required some one-time security key which would normally be delivered via SMS, but that could be delivered via phone call as a fallback option, too. Since the phone thought it was connected to the Bluetooth headphone, phone call audio would go to the laptop via Bluetooth.
As the cherry on top, they escalated into the victim's #Amazon account.
Scary shit. #YouCannotBeParanoidEnough #security
Alex Akselrod
boosted
A TUI for managing Bluetooth. Funded by NLnet. And with support for not just Linux but also for MacOS and Windows.
heise online
boosted
heise+ | Hörgerät ReSound Enzo IA 998 mit Bluetooth LE und Auracast im Test
Hörgeräte mit Bluetooth ersetzen drahtlose Ohrhörer und empfangen per Auracast oder Streamer den Ton von TV und Computer. Ein Test der GN ReSound Enzo IA 998.
A TUI for managing Bluetooth. Funded by NLnet. And with support for not just Linux but also for MacOS and Windows.
heise+ | Hörgerät ReSound Enzo IA 998 mit Bluetooth LE und Auracast im Test
Hörgeräte mit Bluetooth ersetzen drahtlose Ohrhörer und empfangen per Auracast oder Streamer den Ton von TV und Computer. Ein Test der GN ReSound Enzo IA 998.
Debby ⁂📎🐧:disability_flag:
boosted
The Raspberry Pi 500+ Works as a Standalone Keyboard (Well, Kinda) #hardware #news #bluetooth #hardware_hacks #keyboards #raspberry_pi
https://www.omgubuntu.co.uk/2025/11/raspberry-pi-500-plus-use-as-regular-keyboard
heise online
boosted
heise+ | NFC-Visitenkarten selbst beschreiben
Einige Firmen bieten Webdienste an, um NFC-Visitenkarten mit Kontaktdaten zu bespielen. Die sollte man ignorieren und die Dinge selbst in die Hand nehmen.
The Raspberry Pi 500+ Works as a Standalone Keyboard (Well, Kinda) #hardware #news #bluetooth #hardware_hacks #keyboards #raspberry_pi
https://www.omgubuntu.co.uk/2025/11/raspberry-pi-500-plus-use-as-regular-keyboard
heise+ | NFC-Visitenkarten selbst beschreiben
Einige Firmen bieten Webdienste an, um NFC-Visitenkarten mit Kontaktdaten zu bespielen. Die sollte man ignorieren und die Dinge selbst in die Hand nehmen.
Bluetooth Channel Sounding: The Next Leap in Bluetooth Innovation
#HackerNews #Bluetooth #Innovation #Bluetooth #Channel #Sounding #Tech #Trends #Wireless #Communication
heise+ | Bluetooth-Reichweite mit ESP32 erhöhen: Einsteigerprojekt für Home Assistant
Mit dem ESP32 bringen Home-Assistant-Nutzer leicht Bluetooth in entlegene Ecken. Zusätzlich können sie dem Mikrocontroller weitere Aufgaben übertragen.
heise online
boosted
heise+ | Auracast für Kopfhörer- und Hörgeräteträger im Test
Auracast verspricht Inklusion für Hörgeräteträger, die sich einfach in Streams für Kopfhörer und Lautsprecher einklinken sollen. Wir haben das ausprobiert.
heise+ | Auracast für Kopfhörer- und Hörgeräteträger im Test
Auracast verspricht Inklusion für Hörgeräteträger, die sich einfach in Streams für Kopfhörer und Lautsprecher einklinken sollen. Wir haben das ausprobiert.