Thu 19 Jun 2008
This weekend the CBBQWE08 will take place in Dortmund, Germany, Old Europe. It’s organized by the CCC Dortmund there will be some lectures – I will give an overview of the new security features of Bluetooth Secure Simple Pairing – but the main focus of the event is the BBQ and having some fun. I hope it will be good weather.
Sat 29 Mar 2008
Remark: FTE changed something in their firmware, therefore the described way does not work anymore!
Found this slides, which give you a nice 20min walk through for changing your BT dongle to a BT sniffer.
Sun 6 Jan 2008
Seems that I have missed one of the most interesting speeches at 24C3.
Henryk Plötz and Karsten Nohl presented the recent developments in reverse engineering the Mifare RFID card. What they basically did is polishing away the different layers of the chip in the Mifare card and then visually analyze the layers, trying to find the cryptographic relevant parts. The security of the low-end Mifare Classic cards is to be concerned as broken. “Start migrating!” 
This does not have an impact on the high-end Mifare DESFire card. Check out the video!
Torrent of the video recording in Matroska / Vorbis / H.264
Torrent of the video recording in MPEG-4 / AAC-LC / H.264
Fri 28 Dec 2007
Hi there! Greetings from 24C3, the annual hacker meeting of CCC. Some updates on Bluetooth related stuff:
Balle released a new version of bluediving, now available in version 0.9.
A funky new tool has been released at this congress: bluedrift. What driftnet is for ethernet, bluedrift is for Bluetooth. Using a special Bluetooth dongle which is capable of being flashed, you are now able to automatically sniff Bluetooth traffic and extract OBEX data, e.g. electronic vcards or pictures, from your sniff.
Another project I didn’t know before is the Wave Bubble by ladyada: “A design for a self-tuning portable RF jammer”
Best cite of the congress: “MIT doesn’t teach you how to fuck GSM-Networks” — Ladyada
Sat 29 Sep 2007
As balle already pointed out, there is a major Bluetooth Bug in iPhones. The SDP-Service can be exploited to execute arbitrary code. The funny thing with iPhones is, that even when Inquiry Scan is disabled (“hidden Bluetooth device”) it’s easy to find out the Bluetooth Address of an iPhone: The WiFi-address is the Bluetooth address incremented by one. When you know the MAC Address of the iPhone, you also know the Bluetooth address.
Another interesting thing: The Metasploit Framework about to be ported to the iPhone. All the applications seem to run as UID 0 on the iPhone – this is going to be fun!
Source: Computerworld