Comment by diggan
2 days ago
Why not assume people are responsible for following their local laws instead? They're not selling anything, so kind of feels it has to fall on the user, not the person who shares a thing.
2 days ago
Why not assume people are responsible for following their local laws instead? They're not selling anything, so kind of feels it has to fall on the user, not the person who shares a thing.
Because people obviously cant be trusted to follow their local laws when using flipper zero-esque devices https://www.bleepingcomputer.com/news/security/wall-of-flipp...
People ignoring laws isn't a new thing, does that mean things that could potentially be used for illegal things should be outright outlawed?
That article you shared seems to say the problem is bigger than the used hardware even:
> Soon after, developer Simon Dankelmann ported the attack to an Android app, allowing people to launch Bluetooth spam attacks without needing a Flipper Zero.
How do you solve that without outlawing Android devices?
> People using Bluetooth-enabled hearing aids and heart rate monitoring tools also reported disruption, which could put their well-being at risk.
This is probably the most bananas part of that article, and it's great that they managed to find these issues in relatively trivial conditions, since the company's own testing apparently doesn't include very basic security checks. If those devices are failing when they aren't connected to the main device, what makes these companies even remotely suitable for building critical devices like that?
Who knows how long time it would take to discover these security issues with medical devices if people weren't able to prototype these sort of attacks at home?
The bluetooth-enabled devices are failing to connect to their devices because of deauth attacks. If you know how to prevent that, I'm sure they'd be happy to implement a fix
1 reply →