The Bluetooth connection of iPhones with peripherals such as speakers, headphones or sound equipment imply risk for the user's privacy as these elements could extract private information from the iPhone, without the user being aware of it.
The hack or trick puts users privacy at risk. The iOS configuration does not notify the profile change and allows the execution of the functions and actions associated with the new profile, so that the users' data are at risk of being stolen by a potential attacker.
I this paper, there are information about how a DrityTooth Hack can be done. More info at http://www.dirtytooth.com
Bluetooth is a method for datacommunication that uses short-range radiolinks to replace cables between computers and their connected units. Many companies have been mulling over this idea, but it was Ericsson Mobile Communication that finally (in 1994) started the project that was named Bluetooth.
As computerized implementations have grown and become increasingly more common in our environment, there has also been a growing need for cables of varying kinds, to tie all these units together and ensure communication between them. These cables, when they grow into a multitude, are not only unsightly but also increasingly cumbersome to handle, both directly and (even more so) indirectly. Consider this list of drawbacks (below):
The Second Web - How a Web that Works Like the World Becomes a World that Liv...John Blossom
Shore Communications Inc. President John Blossom, author of the book "Content Nation," highlights key themes from his forthcoming book "The Second Web," focusing on how all communications, content sources and sensors are converging into a continuous fabric of immersive, intuitive and pervasive experiences that are transforming how we live.
The Second Web - How a Web that Works Like the World Becomes a World That Liv...John Blossom
John Blossom, President of Shore Communications Inc. and author of the classic social media book "Content Nation" outlines how pervasive, immersive and sense-driven media flowing through all networks are converging into one all-encompassing environment that is transforming the world - and becoming our world.
Índice del libro "Big Data: Tecnologías para arquitecturas Data-Centric" de 0...Telefónica
Índice del libro "Big Data: Tecnologías para arquitecturas Data-Centric" de 0xWord escrito por Ibón Reinoso ( https://mypublicinbox.com/IBhone ) con Prólogo de Chema Alonso ( https://mypublicinbox.com/ChemaAlonso ). Puedes comprarlo aquí: https://0xword.com/es/libros/233-big-data-tecnologias-para-arquitecturas-data-centric.html
Índice de libro "Historias Cortas sobre Fondo Azul" de Willy en 0xWordTelefónica
Índice de libro "Historias Cortas sobre Fondo Azul" de Willy (Guillermo Obispo https://mypublicinbox.com/Willy_ ) en 0xWord. Puedes comprar el libro aquí: https://0xword.com/es/libros/232-historias-cortas-sobre-fondo-azul.html
More Related Content
Similar to DirtyTooth: It´s only Rock'n Roll but I like it
Bluetooth is a method for datacommunication that uses short-range radiolinks to replace cables between computers and their connected units. Many companies have been mulling over this idea, but it was Ericsson Mobile Communication that finally (in 1994) started the project that was named Bluetooth.
As computerized implementations have grown and become increasingly more common in our environment, there has also been a growing need for cables of varying kinds, to tie all these units together and ensure communication between them. These cables, when they grow into a multitude, are not only unsightly but also increasingly cumbersome to handle, both directly and (even more so) indirectly. Consider this list of drawbacks (below):
The Second Web - How a Web that Works Like the World Becomes a World that Liv...John Blossom
Shore Communications Inc. President John Blossom, author of the book "Content Nation," highlights key themes from his forthcoming book "The Second Web," focusing on how all communications, content sources and sensors are converging into a continuous fabric of immersive, intuitive and pervasive experiences that are transforming how we live.
The Second Web - How a Web that Works Like the World Becomes a World That Liv...John Blossom
John Blossom, President of Shore Communications Inc. and author of the classic social media book "Content Nation" outlines how pervasive, immersive and sense-driven media flowing through all networks are converging into one all-encompassing environment that is transforming the world - and becoming our world.
Índice del libro "Big Data: Tecnologías para arquitecturas Data-Centric" de 0...Telefónica
Índice del libro "Big Data: Tecnologías para arquitecturas Data-Centric" de 0xWord escrito por Ibón Reinoso ( https://mypublicinbox.com/IBhone ) con Prólogo de Chema Alonso ( https://mypublicinbox.com/ChemaAlonso ). Puedes comprarlo aquí: https://0xword.com/es/libros/233-big-data-tecnologias-para-arquitecturas-data-centric.html
Índice de libro "Historias Cortas sobre Fondo Azul" de Willy en 0xWordTelefónica
Índice de libro "Historias Cortas sobre Fondo Azul" de Willy (Guillermo Obispo https://mypublicinbox.com/Willy_ ) en 0xWord. Puedes comprar el libro aquí: https://0xword.com/es/libros/232-historias-cortas-sobre-fondo-azul.html
Índice del libro: Máxima Seguridad en Windows: Secretos Técnicos. 6ª Edición ...Telefónica
Índice del libro: "Máxima Seguridad en Windows: Secretos Técnicos. 6ª Edición Actualizada con nuevos contenidos" escrito por Sergio de Los Santos ( https://MyPublicInbox.com/SSantos ) en 0xWord. Puedes comprarlo aquí: https://0xword.com/es/libros/22-libro-maxima-seguridad-windows.html
Índice del libro "Amazon Web Services: Hardening de Infraestructuras Cloud Co...Telefónica
Índice del libro "Amazon Web Services: Hardening de Infraestructuras Cloud Computing" de Abraham Romero https://mypublicinbox.com/martrudix publicado por 0xWord. Puedes comprarlo online aquí: https://0xword.com/es/libros/229-amazon-web-services-hardening-de-infraestructuras-cloud-computing.html
Índice del Libro "Ciberestafas: La historia de nunca acabar" (2ª Edición) de ...Telefónica
Índice del Libro "Ciberestafas: La historia de nunca acabar" (2ª Edición) de 0xWord de Juan Carlos Galindo ( https://mypublicinbox.com/galindolegal ) con prólogo y epílogo del Sr. Juez Eloy Velasco ( https://mypublicinbox.com/eloyvelasco ) y Chema Alonso ( https://mypublicinbox.com/ChemaAlonso )
Índice del Libro "Storytelling para Emprendedores"Telefónica
´Índice del Libro "Storytelling para Emprendedores" escrito por Roda Padadero ( https://MyPublicInbox.com/RosaPanadero ) de 0xWord.Puedes comprarlo online aquí: https://0xword.com/es/libros/224-storytelling-para-emprendedores.html
Presentación de Chema Alonso ( https://MyPublicInbox.com/ChemaAlonso ) realizada en la DotNet 2023 en Madrid sobre Latch Web3. Más información en: https://www.elladodelmal.com/2023/05/latch-web3-un-pestillo-de-seguridad.html
Índice del libro "Hardening de servidores GNU / Linux 5ª Edición (Gold Edition)"Telefónica
Índice del libro "Hardening de servidores GNU / Linux 5ª Edición (Gold Editon)" de 0xWord. Puedes comprarlo aquí: https://0xword.com/es/libros/38-libro-hardening-servidores-linux.html
Escrito por Pablo González: https://MyPublicInbox.com/PabloGonzalez y Carlos Álvarez Martín
Índice del libro de "WhatsApp INT: OSINT en WhatsApp" de 0xWord escrito por Luis Márquez ( https://mypublicinbox.com/luismarquezEs ). Puedes comprar el libro en 0xWord.com: https://0xword.com/es/libros/219-whatsapp-int-osint-en-whatsapp.html
Índice del libro "De la Caverna al Metaverso" de 0xWord.comTelefónica
Índice del libro "De la Caverna al Metaverso" de 0xWord, escrito por Felipe Colorado Lobo [Contacto: https://mypublicinbox.com/FColorado ] Puedes comprarlo online en: https://0xword.com/es/libros/217-de-la-caverna-al-metaverso-un-relato-disruptivo-de-la-tecnologia.html
20º Máster Universitario de Ciberseguridad UNIRTelefónica
Programa del 20º Máster Universitario de Ciberseguridad UNIR.
Apadrinado por Chema Alonso. Más información en: https://estudiar.unir.net/es/es-esp-ma-ing-master-ciberseguridad/
BootCamp Online en DevOps (and SecDevOps) de GeeksHubs AcademyTelefónica
Descripción del BootCamp Online en DevOps (and SecDevOps) de GeeksHubs Más información en la web del curso. https://geekshubsacademy.com/producto/devops/
Índice del libro "Ciberseguridad de tú a tú" de 0xWordTelefónica
Índice del libro "Ciberseguridad de tú a tú" de 0xWord que puedes comprar online: https://0xword.com/es/libros/216-ciberseguridad-de-tu-a-tu-lo-que-tienes-que-conocer-para-sentirte-mas-seguro.html
Está escrito por Yolanda Corral ( https://mypublicinbox.com/yocomu ) que dirige el Canal de Youtube y Podcast "Palabra de Hacker" ( https://www.mypublicinbox.com/palabradehacker ).
Epílogo de Angelucho : https://www.mypublicinbox.com/Angelucho
Índice del libro "Open Source INTelligence (OSINT): Investigar personas e Ide...Telefónica
Índice del libro "Open Source INTelligence (OSINT): Investigar personas e Identidades en Internet 2ª Edición" de 0xWord, escrito por Carlos Seisdedos ( https://www.mypublicinbox.com/carlos_seisdedos ) y Vicente Aguilera ( https://mypublicinbox.com/VicenteAguileraDiaz ). Puedes comprar el libro en : https://0xword.com/libros/162-open-source-intelligence-osint-investigar-personas-e-identidades-en-internet.html
Índice del libro "Social Hunters" de 0xWordTelefónica
Índice del libro "Social Hunters" de 0xWord, escrito por Marta Barrio ( https://mypublicinbox.com/martrudix ) y Carolina Gómez ( https://mypublicinbox.com/Carol12Gory ) sobre el mundo de los hackers que utilizan técnicas de Ingeniería Social. Puedes comprarlo en: https://0xword.com/es/libros/215-social-hunters-hacking-con-ingenieria-social-en-el-red-team.html
Índice del libro "Kubernetes para profesionales: Desde cero al despliegue de ...Telefónica
Índice del libro de 0xWord "Kubernetes para profesionales: Desde cero al despliegue de aplicaciones seguras y resilientes" que puedes comprar aquí: https://0xword.com/es/libros/213-kubernetes-para-profesionales-desde-cero-al-despliegue-de-aplicaciones-seguras-y-resilientes.html Escrito por Rafael Troncoso ( https://mypublicinbox.com/rafaeltroncoso )
Los retos sociales y éticos del MetaversoTelefónica
Las empresas están comenzando a explorar las muchas oportunidades comerciales nuevas que ofrece. Sin embargo, de inteligencia artificial hemos aprendido que también existen posibles consecuencias éticas y sociales negativas asociado al uso masivo de estas tecnologías.
Richard Benjamins [ https://mypublicinbox.com/rbenjamins ] (Chief AI & Data Strategist), Yaiza Rubio [ https://MyPublicInbox.com/YrubioSec ] (Chief Metaverse Officer) y Chema Alonso [ https://MyPublicInbox.com/ChemaAlonso ] (Chief Digital Officer) de Telefónica abordan esta temática en un informe llamado “Social and ethical challenges of the metaverse” donde describen qué es el Metaverso, qué tecnologías forman parte de su ecosistema y de dónde proviene. Después se enfocan en los posibles riesgos sociales y éticos del metaverso y cómo mitigarlos. Finalmente, concluyen que las empresas que actualmente están implementando el uso responsable de la IA, están bien preparadas para prevenir o mitigar los riesgos sociales y éticos del metaverso. No porque conozcan el futuro, sino porque cuentan con la gobernanza y la cultura adecuadas para hacer frente a tales riesgos. Más info: https://www.telefonica.com/es/sala-comunicacion/los-retos-sociales-y-eticos-del-metaverso/
Índice del Libro "Ciberestafas: La historia de nunca acabar" de 0xWordTelefónica
Índice del Libro "Ciberestafas: La historia de nunca acabar" de 0xWord escrito por Juan Carlos Galindo ( https://MyPublicInbox.com/Galindolegal ) con Prólogo de Chema Alonso ( https://MyPublicInbox.com/ChemaAlonso ). Puedes comprarlo en: https://0xword.com/es/libros/205-ciberestafas-la-historia-de-nunca-acabar.html
Unlocking Productivity: Leveraging the Potential of Copilot in Microsoft 365, a presentation by Christoforos Vlachos, Senior Solutions Manager – Modern Workplace, Uni Systems
UiPath Test Automation using UiPath Test Suite series, part 6DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI.
UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities.
Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes.
What will you get from this session?
1. Insights into integrating generative AI.
2. Understanding how this integration enhances test automation within the UiPath platform
3. Practical demonstrations
4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath
Topics covered:
What is generative AI
Test Automation with generative AI and Open AI.
UiPath integration with generative AI
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Maruthi Prithivirajan, Head of ASEAN & IN Solution Architecture, Neo4j
Get an inside look at the latest Neo4j innovations that enable relationship-driven intelligence at scale. Learn more about the newest cloud integrations and product enhancements that make Neo4j an essential choice for developers building apps with interconnected data and generative AI.
Threats to mobile devices are more prevalent and increasing in scope and complexity. Users of mobile devices desire to take full advantage of the features
available on those devices, but many of the features provide convenience and capability but sacrifice security. This best practices guide outlines steps the users can take to better protect personal devices and information.
Observability Concepts EVERY Developer Should Know -- DeveloperWeek Europe.pdfPaige Cruz
Monitoring and observability aren’t traditionally found in software curriculums and many of us cobble this knowledge together from whatever vendor or ecosystem we were first introduced to and whatever is a part of your current company’s observability stack.
While the dev and ops silo continues to crumble….many organizations still relegate monitoring & observability as the purview of ops, infra and SRE teams. This is a mistake - achieving a highly observable system requires collaboration up and down the stack.
I, a former op, would like to extend an invitation to all application developers to join the observability party will share these foundational concepts to build on:
zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex ProofsAlex Pruden
This paper presents Reef, a system for generating publicly verifiable succinct non-interactive zero-knowledge proofs that a committed document matches or does not match a regular expression. We describe applications such as proving the strength of passwords, the provenance of email despite redactions, the validity of oblivious DNS queries, and the existence of mutations in DNA. Reef supports the Perl Compatible Regular Expression syntax, including wildcards, alternation, ranges, capture groups, Kleene star, negations, and lookarounds. Reef introduces a new type of automata, Skipping Alternating Finite Automata (SAFA), that skips irrelevant parts of a document when producing proofs without undermining soundness, and instantiates SAFA with a lookup argument. Our experimental evaluation confirms that Reef can generate proofs for documents with 32M characters; the proofs are small and cheap to verify (under a second).
Paper: https://eprint.iacr.org/2023/1886
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...SOFTTECHHUB
The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing.
One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.
How to Get CNIC Information System with Paksim Ga.pptxdanishmna97
Pakdata Cf is a groundbreaking system designed to streamline and facilitate access to CNIC information. This innovative platform leverages advanced technology to provide users with efficient and secure access to their CNIC details.
GridMate - End to end testing is a critical piece to ensure quality and avoid...ThomasParaiso2
End to end testing is a critical piece to ensure quality and avoid regressions. In this session, we share our journey building an E2E testing pipeline for GridMate components (LWC and Aura) using Cypress, JSForce, FakerJS…
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
Building RAG with self-deployed Milvus vector database and Snowpark Container...Zilliz
This talk will give hands-on advice on building RAG applications with an open-source Milvus database deployed as a docker container. We will also introduce the integration of Milvus with Snowpark Container Services.
In his public lecture, Christian Timmerer provides insights into the fascinating history of video streaming, starting from its humble beginnings before YouTube to the groundbreaking technologies that now dominate platforms like Netflix and ORF ON. Timmerer also presents provocative contributions of his own that have significantly influenced the industry. He concludes by looking at future challenges and invites the audience to join in a discussion.
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
7. 2. The request for and download of call history, incoming and outgoing, from the
device. This enables a potential attacker to extract the call register from the iOS
operating system. The format in which they are extracted can vary between
VCard 2.1 and 3.0.
Information extracted with the attacker's Rogue device can be sent via Internet to a
server under the attacker’s control. Thus connecting iPhone devices with an audio
device, even hands-free, with Bluetooth is a threat to user privacy.
The information that can be extracted from the terminal via a PBAP profile is as follows:
1. People to whom the user relates.
2. The user's phone number.
3. Companies with which the user relates.
4. Email addresses.
5. The card owner's contact information.
6. The call history.
7. The physical addresses of the people associated with the contact card.
This information can be processed on the Internet to achieve a greater level of detail
and knowledge.
3.1.1- Software Implementation
The first approach to take advantage of the DirtyTooth hack was made via a software
implementation. To carry out the hack the following components were used:
1. Raspberry Pi 3 Model B.
1. 1.2GHz 64-bit quad-core ARMv8 CPU
2. Bluetooth 4.1 module
3. Bluetooth Low Energy (BLE)
2. PyBluez. A Python module that extends Bluetooth functionality in Python. Access
to the resources is provided by Bluetooth technology.
3. PyOBEX. This package must be installed following the installation of PyBluez and
implements the features of the OBEX protocol.
Here is the operation or algorithm implemented to perform DirtyTooth:
1. A .bashrc file was used, which on starting the Raspberry Pi 3 identifies the name
with which the Bluetooth module will issue the signal and class. The following
lines are added at the end of the file:
8. 1. pulseaudio -D
2. # sudo -u pi pulseaudio -D
3. sudo hciconfig hci0 name "NAME HERE"
4. sudo hciconfig hci0 class 0x240418
5. sudo hciconfig hci0 sspmode 1
6. sudo hciconfig hci0 piscan
7. sudo /usr/bin/hacktooth/dirtytooth.py &
As you can see, the hciconfig command is the one that defines the class of the
profile that is offered via Bluetooth.
2. Option pulseaudio -D allows the execution of pulseaudio daemon. The sspmode
allows the module setup to specify the need to enter a PIN in the pairing process
between speaker and the iPhone. By setting it to 1, it will not ask for a PIN, as
long as the Bluetooth device version is equivalent to the 2.1 implementation or
higher.
3. The dirtytooth.py file is in charge of automating the actions once the pairing is
done. In the first instance the device is paired thanks to the commands entered
in the .bashrc file.
4. Once a device is paired, the dirtytooth.py file is launched. This file will make the
request by changing the class UUID. This is the moment that the hack enters iOS,
as the operating system neither prohibits it nor notifies the user.
Looking more closely at the last point of the algorithm, we must emphasize that
dirtytooth.py has a function that exploits the Bluetooth connection, via the PBAP profile,
to obtain files.
Figure 5. Obtaining data via PBAP
On the other hand, the function is used to obtain the list of contacts in VCard format
and the call register in the same format.
11. 4. iPhone 5 / 5S.
5. iPhone 6 / 6S / Plus 6 / Plus 6S.
6. iPhone 7 / Plus 7.
Currently, all iOS operating systems, compatible with the list of previous models, can be
used with DirtyTooth. The current version of the operating system in the release of this
document is iOS 10.2.1.
3.3- Scope and possibilities
The data that can be obtained via the DirtyTooth hack are:
1. People to whom the user relates.
2. The user's phone number.
3. Companies with which the user relates.
4. Email addresses.
5. The card owner's contact information.
6. The call history.
7. The physical addresses of people associated to the contacts card.
After processing this information, more relevant information might be obtained. The
following is the type of data that can be derived and obtained from a contact theft:
1. Images from Facebook profiles.
2. Name of telephone operator.
3. A first level of relationship with companies and employees via LinkedIn.
4. MAC Wifi adapter address.
5. OS and model of terminal, APT-oriented.
6. Geographical location of landline numbers.
7. Owners of the landline numbers.
8. Interaction with the Telegram/WhatsApp API for image discovery, status
information and connection time.
12. 4.- Conclusions
The Bluetooth connection of iPhones with peripherals such as speakers, headphones or
sound equipment imply risk for the user's privacy as these elements could extract
private information from the iPhone, without the user being aware of it.
The DirtyTooth hack enables an attacker to extract private information from the iOS
device and to know the user's relationships and environment, as well as data such as:
1. People to whom the user relates.
2. The user’s telephone number.
3. Companies with which the user relates.
4. Email addresses.
5. The card owner's contact information.
6. The call history.
7. The physical addresses of people associated to the contacts card.
The hack or trick puts users' privacy at risk. The iOS operating system does not notify the
profile change and allows the execution of the functions and actions associated with the
new profile, so that the users' data are at risk of being stolen by a potential attacker.
Uploading the information to a server controlled by the attacker allows the information
to be processed to attain a greater level of detail. Information can be exploited and
much information can be obtained from the person's relationships.
In other words, DirtyTooth is a trick or hack that can take advantage of this accesibility
configuration. It's a simply accesibility configuration potentially dangerous.
5.- References
• iOS Profiles – Bluetooth. https://support.apple.com/es-la/HT204387
• Specification Bluetooth. Requirements PIN.
http://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-
121r1.pdf
• iOS 10.2.1 Security. https://support.apple.com/es-es/HT207482
• Specification of Profiles. Bluetooth.
https://www.bluetooth.com/specifications/profiles-overview
• Bluez Libray Specification. https://people.csail.mit.edu/albert/bluez-
intro/c212.html
• Components: BlueCreation BC127. https://www.sparkfun.com/products/11927
• Teensy. https://www.pjrc.com/teensy/