The BlueBag Project Current Bluetooth worms pose relatively little danger compared to Internet scanning worms—but things might change soon. The authors’ BlueBag project shows targeted attacks through Bluetooth malware using proof-of-concept codes and devices that demonstrate their feasibility. In this article, we focus on the new risks created by the widespread presence of Bluetooth-enabled devices carrying both potentially sensitive data and vulnerability-prone software. In particular, we show how this mix of technologies could become a vehicle for propagating malware that’s specifically crafted to extract information from smart phones.

We built a mobile, covert attack device (which we call BlueBag) that demonstrates how stealthy attackers can reach and infect a wide number of devices. Bluetooth technology As a word or term, Bluetooth is now fairly common. The literal meaning supposedly refers to the Viking Emperor Harald (Blatand, in Danish), who lived during the 10th century AD and united the kingdoms of Denmark, Norway, and Sweden (http://en.wikipedia.org/wiki/Harald _I_of_Denmark). In fact, the Bluetooth protocol aims to unify different wireless data-transmission technologies among mobile and static electronic devices such as PCs, cellular phones, notebooks, PDAs, DVD players, MP3 devices, TVs, Hi-Fis, cash registers, point-of-sale termi-

Download Studying Bluetooth Malware Propagation