I mentioned this in the past -- that apparently Apple puts more effort in authenticating replacement parts for the iPhone than it does for authenticating wireless devices which pretend to be an Apple device.
You know that authenticating something is a very simple and self contained operation right? Like it’s not hard to do it without memory safety issues. The overwhelming majority of attacks on cryptography are poor protocols, not anything else.
Parsing arbitrary attacker provided data on the other hand is hard. I would guess the there’s an incorrect assumption that Bluetooth (and similar) radios are legitimate fcc approved hardware that isn’t actively malicious. I would suspect that if people put any thought into it they could do similar to any other Bluetooth device.
That's fine. I'm more concerned that the (replacement) hardware on my own device is not malicious, than I am with the hardware on other devices that are already outside my control. My trust model doesn't include them to begin with. And to the extent that my OS trusts those devices, at least any bugfixes can be pushed via software update.
As the article notes, there is a simple way to stop this attack, which is to disable bluetooth. I already do that by default.
Kudos to the Flipper Zero team for making such a desirable toy. Build a thing, get a couple Wired articles written up about it, make several million dollars.
I feel like you’re giving it an unfair shake. They didn’t just _build a toy_ those of us who originally supported through kickstarter saw a huge chunk of the work that went into building this device, the flipper team (10ish people?) has and continues to overcome so many crazy things (Covid, chips, supply chains, shipping) just to have the flipper device available world wide. The dev/modding community behind it is pretty amazing.
Full disclosure I was a very early backer. I have used my Flipper for fun and business. I can’t think of any other $120 _toy_ I use as much. Maybe I’m biased, and took your comment out of context.
AshamedCaptain|2 years ago
olliej|2 years ago
Parsing arbitrary attacker provided data on the other hand is hard. I would guess the there’s an incorrect assumption that Bluetooth (and similar) radios are legitimate fcc approved hardware that isn’t actively malicious. I would suspect that if people put any thought into it they could do similar to any other Bluetooth device.
arshbot|2 years ago
chatmasta|2 years ago
As the article notes, there is a simple way to stop this attack, which is to disable bluetooth. I already do that by default.
fragmede|2 years ago
vuln|2 years ago
I feel like you’re giving it an unfair shake. They didn’t just _build a toy_ those of us who originally supported through kickstarter saw a huge chunk of the work that went into building this device, the flipper team (10ish people?) has and continues to overcome so many crazy things (Covid, chips, supply chains, shipping) just to have the flipper device available world wide. The dev/modding community behind it is pretty amazing.
Full disclosure I was a very early backer. I have used my Flipper for fun and business. I can’t think of any other $120 _toy_ I use as much. Maybe I’m biased, and took your comment out of context.
15457345234|2 years ago
unknown|2 years ago
[deleted]