Exploiting Bluetooth Vulnerabilities: From Vehicle Systems to Bank Account Access

Learn about critical Bluetooth security vulnerabilities in modern vehicles and aircraft systems through this DEF CON 32 conference talk. Discover how infotainment systems' increased functionality and wireless connectivity create new attack surfaces, particularly due to patching challenges. Explore the BlueToolkit framework for testing and exploiting Bluetooth Classic vulnerabilities, including practical demonstrations and newly discovered exploits. Examine findings from research that uncovered 64 vulnerabilities across 22 modern cars and the Garmin Flight Stream flight management system. Gain insights into implementation-specific vulnerabilities that could enable information theft, man-in-the-middle attacks, and privilege escalation leading to account hijacking. Master techniques and methodologies that make Bluetooth security research more accessible and reproducible for security professionals and researchers.