this post was submitted on 17 Oct 2023
18 points (90.9% liked)

Flipper Zero

420 readers
1 users here now

Flipper Zero is a portable Tamagotchi-like multi-functional device developed for interaction with access control systems. The device is able to read, copy, and emulate radio-frequency (RFID) tags, radio remotes, iButton, and digital access keys, along with a GPIO interface.

Rules

  1. Don't do unto others what you don't want done unto you.
  2. No Porn, Gore, or NSFW content. Instant Ban.
  3. No Spamming, Trolling or Unsolicited Ads. Instant Ban.
  4. Stay on topic in a community. Please reach out to an admin to create a new community.

founded 2 years ago
MODERATORS
[email protected]
18
Flipper Zero can be used to crash iPhones running iOS 17, but there's a way to foil the attack (www.zdnet.com)
submitted 11 months ago by [email protected] to c/[email protected]
0 comments fedilink hide all child comments
 

The Flipper Zero can do a lot, but I wasn't expecting it to be able to be able to lock up an iPhone using nothing more than Bluetooth.

But it turns out it can do just that.

Now, you can't do this with a stock Flipper Zero. If you want to test this out, you'll need to have a Flipper Zero and then load an early developer build of Xtreme third-party firmware onto it.

From there it's a matter of firing up an app called Apple BLE Spam and choosing an attack called Lockup Crash.

And it does exactly what it says in the name – it'll lock up and crash the iPhone.

Basically, it performs a denial of service (DoS) attack on iPhones.

ZDNET has tested this and can confirm that it can lock up an iPhone running the latest iOS 17.0.3. The issue does not appear to affect iPhones running iOS 16.

Also: If you like your Flipper Zero, then you'll love this

But the Apple BLE Spam app can do more. It can also initiate an array of pairing attacks that are more spammy than causing crashes, but are still annoying to the iPhone user, and at this point it's unclear if they could be crafted into a different attack.

no comments (yet)
sorted by: hot top controversial new old
there doesn't seem to be anything here