Unknown number of Bluetooth LE devices impacted by SweynTooth vulnerabilities

SweinTooth

A team of academics from Singapore has published this week a research paper detailing a collection of vulnerabilities named SweynTooth that impact devices running the Bluetooth Low Energy (BLE) protocol.

More specifically, the SweynTooth vulnerabilities impact the software development kits (SDKs) responsible for supporting BLE communications.

These BLE SDKs are provided by vendors of system-on-a-chip (SoC) chipsets.

Companies that make IoT or smart devices buy these SoCs and use them as the base chipset around which they build their devices. They use the BLE SDK provided by the SoC maker to support communications via BLE, a version of the Bluetooth protocol designed to use less enegery in order to minimize battery drainage on mobile and Internet of Things (IoT) devices.

Six vendors impacted so far. More to follow.

This week, three researchers from the Singapore University of Technology and Design (SUTD) said they’ve spent last year testing BLE SDKs from several vendors of SoC chipsets.

Leave a Reply

Your email address will not be published. Required fields are marked *