BlueBorne Vulnerability Scanner for Android

Bluetooth logo on a mouse

"There are huge numbers of Bluetooth-enabled devices around the world, and if any device isn't patched, and comes within 30 feet or so of an infected device, it can become compromised within seconds", said Michael Gazeley, chief executive of Hong Kong-based cybersecurity firm Network Box.

"Critical servers and infrastructure in an enterprise can be attacked through laptop and mobile devices used by administrators to access or connect".

Firstly, the attacker finds some local Bluetooth-enabled devices.

As for the hacking method, the company has said that BlueBorne attack vector allows a hacker to remotely enter any operating system without the need for pairing or the device be in discoverable mode.

Armis Labs says more than 5 billion devices are vulnerable to attacks through the Bluetooth exploits. Having it on all day everyday can exponentially risk a person's security and privacy, even if they have installed the necessary patch.

Experts say the virus, dubbed BlueBorne, exposes a newly discovered vulnerability that means it can easily be spread across any device that has Bluetooth of devices around the globe. The attack can be completely invisible, and it can happen while walking on the street.

BlueBorne would then be able to spread to any Bluetooth enabled devices, bouncing from one to another and even onto the bank's computers. It also echoes the way the WannaCry ransomware spread earlier this year. That's well above the number of Android devices out in the wild, as it includes everything that comes with Bluetooth connectivity.

This allows them to intercept communications or take over the device for other malicious purposes. An estimated 8.2 billion devices use Bluetooth.

In most cases, the problems associated with BlueBorne vectors will be patched by the major players in the electronics space. It would seem that every type of device which makes use of Bluetooth has the potential of being affected, meaning that vulnerabilities are present within all "eligible" devices. Windows and iOS phones are already protected from the vulnerability. But we all know that updates aren't exactly instant in the Android universe, especially compared to Apple's or Microsoft's updates.

As was expected, numerous tech giants that dominate the tech market have stated that patches will be released soon in order to fix vulnerabilities discovered (or yet to be discovered) within their products, so that their users might not end up having their gadgets exploited.

Armis said Microsoft issued security patches to all supported Windows versions on July 11, 2017 with co-ordinated notification on Tuesday.

Apple also regularly updates its products for security.

Related News: