New 0-click Bluetooth Vulnerability - They don't need you to do anything

rootyme · Jan 25, 2024

All Operating Systems are affected by this Bluetooth exploit. Things are more serious for Android and Linux. This vulnerability doesn't require any interaction from your end! Reminder that every OS must be patched regularly.

Exploiting 0-click Android Bluetooth vulnerability to inject keystrokes without pairing - Mobile Hacker

A recently discovered critical vulnerabilities (CVE-2023-45866, CVE-2024-21306) in Bluetooth can be exploited to inject keystrokes without user confirmation – by accepting any Bluetooth pairing request. These vulnerabilities affect Android, Linux, macOS, iOS, and Windows operating systems...

www.mobile-hacker.com

Have you ever encountered a zero click malware yourself? What month/year's security patch are you on?

SirVer · Jan 26, 2024

I'm on the Android 13 November patch, so technically vulnerable. It's a bit scary, but from that article it seems like a necessary prerequisite is knowing the devices MAC address, which only happens if it's discoverable, and most phones these days only turn that on when you're trying to actively pair with something.

enthusiast29 · Jan 26, 2024

Just updated my phone today to Jan 2024 patch.

New 0-click Bluetooth Vulnerability - They don't need you to do anything

rootyme

Exploiting 0-click Android Bluetooth vulnerability to inject keystrokes without pairing - Mobile Hacker

SirVer

enthusiast29