These attack vectors have been around since 2010, I built a zero click Bluetooth jailbreak for iOS.
We put it into a directed yagi antenna and made a “gun” that could shoot folks with a jailbreak. Fun demo, but it made the world less safe so we disclosed it to Apple.
This article is the equivalent of TMZ for tech. Just tech fearmongering for non-technical readers. It's just your run-of-the-mill Bluetooth peripheral hijack that's been around for 20 years.
I’m kind of confused by this comment - I clicked the article expecting some breathless sensationalist nonsense, which is all too common these days, but it was pretty much just a summary of the actual vulnerabilities?
One of them is literally “you can zero click inject keystrokes into any Android phone which has Bluetooth enabled with no user interaction,” that seems… I don’t know, reasonably bad?
Well, I don't know. Silently pairing a BT keyboard with no notification to or interaction from the user seems a pretty big deal to me.
Why are you downplaying this?
it's hardly an improvement on the classic PS/2 hijack, where the attacker hides behind your PC Tower until you reach back there to plug in your keyboard, then swats your hand away and plugs in their own keyboard instead
We put it into a directed yagi antenna and made a “gun” that could shoot folks with a jailbreak. Fun demo, but it made the world less safe so we disclosed it to Apple.