Academic researchers have uncovered security vulnerabilities in Bluetooth Classic that allows attackers to spoof paired devices. They found that the bugs allow an attacker to insert a rogue device into an established Bluetooth pairing, masquerading as a trusted endpoint. The bugs allow Bluetooth Impersonation Attacks (BIAS) on everything from internet of things (IoT) gadgets to phones to laptops. The flaws are not yet patched in the specification, though some affected vendors may have implemented workarounds to fix the bugs.
Source: https://threatpost.com/bluetooth-bugs-impersonation-devices/155886/

