Hack raises Bluetooth security fears

A pair of researchers at Tel Aviv University have uncovered a serious security flaw in Bluetooth - the short-range radio communication protocol - which if exploited could lead to easy, widespread blue-jacking:

Cryptographers have discovered a security flaw in implementations of Bluetooth which allows hackers to pair their devices with prospective victims. The approach creates a means for hackers to hijack Bluetooth-enabled devices. It's not all just theory either, unlike most cryptographic attacks.

The researchers - Yaniv Shaked and Avishai Wool of Tel Aviv University in Israel - have come up with an exploit which allows hackers to pair with devices without alerting their owner. The approach gets around limitations of a security attack first described by Ollie Whitehouse of security firm @Stake last year.

More from the Register here.

So you can trick a device into pairing, without the owner knowing? That's not a flaw - it's a bloody big hole! Discuss the implications of this security issue here - unless you're trying to stop some nare-do-well from syphoning off your address book...