An internet of things security company recently identified a new, "highly infectious" form of malware. According to the organization, 5.3 billion of the 8.2 billion Bluetooth enabled devices worldwide are vulnerable to this strain of malware.
This malware, called BlueBorne, is particularly dangerous because it spreads undetected without any action on the user's part. Whereas most malware requires the user to click a link or download a file, BlueBorne can spread to any device with Bluetooth turned on. Once it infects one Bluetooth enabled device, it can quickly spread to any other devices within range that are using Bluetooth.
BlueBorne is similar to the ransomware WannaCry, which crippled hundreds of organizations earlier this year. WannaCry took advantage of the EternalBlue vulnerability to infect all network connected computers after being downloaded onto a single computer. This technique allowed WannaCry to infect hundreds of thousands of computers within a few hours.
These similarities have led cybersecurity experts to fear that BlueBorne could be as devastating as WannaCry, or even more so.
Apple, Google, and Microsoft have all released patches to protect against BlueBorne. However, many smart devices do not receive such frequent updates. Experts estimate that 2 billion devices will not receive a patch to protect them from BlueBorne. Alfred Ng "Billions of Bluetooth devices could get hit by this attack," www.cnet.com (Sept. 12, 2017).