January 12, 2024 at 06:15AM Apple announced a firmware update for the Magic Keyboard to fix a Bluetooth vulnerability disclosed by SkySafe engineer. The vulnerability could allow attackers to inject keystrokes without authentication. The update, version 2.0.6, is being rolled out and reportedly mitigates the attack. Users can check for the update in their system … Read more
December 8, 2023 at 06:42AM A Bluetooth vulnerability enables attackers to bypass authentication and perform keystroke injection on Android, Linux, and Apple devices. Meeting Takeaways: 1. A security vulnerability has been identified that affects Android, Linux, and Apple devices pertaining to Bluetooth connections. 2. This vulnerability allows attackers to execute a Bluetooth authentication bypass. 3. … Read more
December 6, 2023 at 03:57PM A Bluetooth vulnerability, CVE-2023-45866, allows unauthorized keystroke injection into Apple, Android, and Linux devices, enabling attackers to execute commands remotely. Marc Newlin discovered and reported the bug, which can be exploited from Linux using standard hardware. Fixes are available for newer Android versions and ChromeOS, but not all systems are … Read more
December 6, 2023 at 12:18PM A critical Bluetooth vulnerability, CVE-2023-45866, enabling keystroke injection on macOS, iOS, Android, and Linux, allows attackers to remotely perform actions on devices without user confirmation. Discovered by Marc Newlin, who will release proof-of-concept exploits, it affects multiple platforms with varying levels of exposure. Patches are available for some, but not … Read more