Cybersecurity

5485 readers

65 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !cybersecurity@lemmy.capebreton.social !securitynews@infosec.pub !netsec@links.hackliberty.org !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 1 year ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

New Bluetooth Vulnerability Leak, Your Passcode to Hackers During Pairing (gbhackers.com)

submitted 4 days ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works

10 comments fedilink hide all child comments

top 10 comments

sorted by: hot top controversial new old

[–] atrielienz@lemmy.world 23 points 4 days ago (3 children)

The comma makes this title read very weird.

[–] can@sh.itjust.works 10 points 3 days ago

I can't seem, to parse it for the life of me

[–] massive_bereavement@fedia.io 10 points 3 days ago (1 children)

Didn't know Christopher Walken was into netsec.

[–] c0smokram3r@midwest.social 2 points 3 days ago

Now imagine: I use arch, by the way 😅😂

[–] toynbee@lemmy.world 2 points 3 days ago

I would have called this a comma splice, but apparently what I was taught that is - just a comma incorrectly inserted into a sentence - is not the entirety of what a comma splice is.

https://en.m.wikipedia.org/wiki/Comma_splice

[–] drspod@lemmy.ml 3 points 3 days ago

This vuln is not new, it was published 3.5 years ago: https://nvd.nist.gov/vuln/detail/CVE-2020-26558

[–] JoMomma@lemm.ee 5 points 4 days ago (1 children)

Who uses Bluetooth passcodes?

[–] remotelove@lemmy.ca 9 points 4 days ago (1 children)

They are used for most pairing sequences, but we don't type them in anymore. They are used more to validate that it's you that are connecting two devices.

[–] reddig33@lemmy.world -1 points 3 days ago (1 children)

In other words, this vulnerability isn’t that big of a deal.

[–] remotelove@lemmy.ca 1 points 3 days ago

Maybe? There are a ton of shitty BT implementations in the wild that will never get patched. This does seem quirky at first glance, but could just as easily affect millions of vehicles, as an example.

If I was so inclined, I would camp out in a busy parking lot with an antenna just to see what I could find.