Two Zero-Day Bugs Open Millions of Wireless Access Points to Attack

From threatpost.com

Called BleedingBit, this vulnerability impacts wireless networks used in a large percentage of enterprise companies.

Two zero-day vulnerabilities in Bluetooth Low-Energy chips made by Texas Instruments (and used in millions of wireless access points) open corporate networks to crippling stealth attacks.

Adversaries can exploit the bugs by simply being approximately 100 to 300 feet from the vulnerable devices. A compromised access point can then lead to an attacker taking control of the access point, capturing all traffic, and then using the compromised device as a springboard for further internal attacks.

Read more…