Bluejacking

Last updated
This Siemens M75 is bluejacking the Sony Ericsson K600i pictured below. Siemens M75 Bluejacking.jpg
This Siemens M75 is bluejacking the Sony Ericsson K600i pictured below.
This Sony Ericsson K600i is being bluejacked by the Siemens M75 pictured above. The text at the bottom of the screen reads "Add to contacts?" in Norwegian. K600i Bluejacked.jpg
This Sony Ericsson K600i is being bluejacked by the Siemens M75 pictured above. The text at the bottom of the screen reads "Add to contacts?" in Norwegian.

Bluejacking is the sending of unsolicited messages over Bluetooth to Bluetooth-enabled devices such as mobile phones, PDAs or laptop computers, [1] sending a vCard which typically contains a message in the name field (i.e., for bluedating) to another Bluetooth-enabled device via the OBEX protocol.

Contents

Bluetooth has a very limited range, usually around 10 metres (32.8 ft) on mobile phones, but laptops can reach up to 100 metres (328 ft) with powerful (Class 1) transmitters.

Origins

Bluejacking was reportedly first carried out between 2001 and 2003 by a Malaysian IT consultant who used his phone to advertise Ericsson to a single Nokia 7650 phone owner in a Malaysian bank. [2] He also invented the name, which he claims is an amalgam of Bluetooth and ajack, his username on Esato, a Sony Ericsson fan online forum. Jacking is, however, an extremely common shortening of "hijack', the act of taking over something. [3] [4] Ajack's original posts are hard to find, but references to the exploit are common in 2003 posts.

Another user on the forum claims earlier discovery, [5] reporting a near-identical story to that attributed to Ajack, except they describe bluejacking 44 Nokia 7650 phones instead of one, and the location is a garage, seemingly in Denmark, rather than a Malaysian Bank. Also, the message was an insult to Nokia owners rather than a Sony Ericsson advertisement.

Usage

Bluejacking is usually not very harmful, except that bluejacked people generally don't know what has happened, and so may think that their phone is malfunctioning. Usually, a bluejacker will only send a text message, but with modern phones it's possible to send images or sounds as well. Bluejacking has been used in guerrilla marketing campaigns to promote advergames.

The actual message itself doesn't deploy any malware to the software; rather, it is crafted to elicit a response from the user or add a new contact and can be seen as more of a prank than an attack. These messages can evoke either annoyance or amusement in the recipient. Users typically possess the ability to reject such messages, and this tactic is frequently employed in confined environments such as planes, trains, and buses. [6] However, some forms of DoS Disruptions are still possible, even in modern devices, by sending unsolicited pairing requests in rapid succession; this becomes disruptive because most systems display a full screen notification for every connection request, interrupting every other activity, especially on less powerful devices.

Bluejacking is also confused with Bluesnarfing, which is the way in which mobile phones are illegally hacked via Bluetooth.

Companies

BluejackQ

BlueJackQ is a website dedicated to bluejacking. The website contains a few bluejacking stories taken from the site's forum. The website also includes software that can be used for bluejacking and guides on how to bluejack which are slightly out of date but the basic principle still applies to most makes of phone. Its forum has 4,000 registered users and 93,050 posts. [7] The website has been featured in many news articles. [8]

The forums [7] were opened on the November 13, 2003 and has been the center of BluejackQ from the start. It currently has 4 moderators and has 20 different sections available to members. The areas included information about BluejackQ, reviews of mobile phones, media players, PDAs and Miscellaneous devices, general bluejacking threads and an off-topic area. The BluejackQ podcast was first released as a test version on January 15, 2006, thus becoming the first bluejacking-related podcast. Podcasts 1, 2 and 3 featured three members of the forums.[ citation needed ]

The forums seem to have been unused since 2020.

Fictional reference in Person of Interest

The authentic bluejacking as described here is not the same exploit which was frequently depicted in the television series Person of Interest ; that fictional exploit portrayed different and more invasive capabilities.

See also

Related Research Articles

<span class="mw-page-title-main">Bluetooth</span> Short-range wireless technology standard

Bluetooth is a short-range wireless technology standard that is used for exchanging data between fixed and mobile devices over short distances and building personal area networks (PANs). In the most widely used mode, transmission power is limited to 2.5 milliwatts, giving it a very short range of up to 10 metres (33 ft). It employs UHF radio waves in the ISM bands, from 2.402 GHz to 2.48 GHz. It is mainly used as an alternative to wired connections to exchange files between nearby portable devices and connect cell phones and music players with wireless headphones.

Symbian Ltd. was a software development and licensing consortium company, known for the Symbian operating system (OS), for smartphones and some related devices. Its headquarters were in Southwark, London, England, with other offices opened in Cambridge, Sweden, Silicon Valley, Japan, India, China, South Korea, and Australia.

<span class="mw-page-title-main">S60 (software platform)</span> Smartphone software platform

The S60 Platform was a software platform for smartphones that runs on top of the Symbian operating system. It was created by Nokia based on the 'Pearl' user interface from Symbian Ltd. It was introduced at COMDEX in November 2001 and first shipped with the Nokia 7650 smartphone. The platform has since seen 5 updated editions. Series 60 was renamed to S60 in November 2005.

<span class="mw-page-title-main">UIQ</span> Software platform

UIQ was a software platform based upon Symbian OS, created by UIQ Technology AB. It is a graphical user interface layer that provides additional components to the core operating system, to enable the development of feature-rich mobile phones that are open to expanded capabilities through third-party applications.

<span class="mw-page-title-main">Sony Ericsson P900</span> 2004 mobile phone model

The Sony Ericsson P900 is a Symbian OS v7.0 based smartphone from Sony Ericsson.

<span class="mw-page-title-main">Mobile computing</span> Human–computer interaction in which a computer is expected to be transported during normal usage

Mobile computing is human–computer interaction in which a computer is expected to be transported during normal usage and allow for transmission of data, which can include voice and video transmissions. Mobile computing involves mobile communication, mobile hardware, and mobile software. Communication issues include ad hoc networks and infrastructure networks as well as communication properties, protocols, data formats, and concrete technologies. Hardware includes mobile devices or device components. Mobile software deals with the characteristics and requirements of mobile applications.

<span class="mw-page-title-main">Nokia 9210 Communicator</span> Cell phone model

The Nokia 9210 Communicator is a third-generation Communicator series mobile phone produced by Nokia, announced on 21 November 2000 and released in June 2001. It greatly improved on the second generation Nokia 9110 Communicator, providing a colour main screen and using an ARM processor. It is one of the few mobile phones able to send and receive fax.

Bluesnarfing is the unauthorized access of information from a wireless device through a Bluetooth connection, often between phones, desktops, laptops, and PDAs. This allows access to calendars, contact lists, emails and text messages, and on some phones, users can copy pictures and private videos. Both Bluesnarfing and Bluejacking exploit others' Bluetooth connections without their knowledge. While Bluejacking is essentially harmless as it only transmits data to the target device, Bluesnarfing is the theft of information from the target device.

Wireless Village is a set of specifications for mobile instant messaging and presence services. It is intended to be a standard for cellphones and mobile devices to use these services across platforms.

<span class="mw-page-title-main">Mobile phone feature</span> Mobile phone capability or application

A mobile phone feature is a capability, service, or application that a mobile phone offers to its users. Mobile phones are often referred to as feature phones, and offer basic telephony. Handsets with more advanced computing ability through the use of native code try to differentiate their own products by implementing additional functions to make them more attractive to consumers. This has led to great innovation in mobile phone development over the past 20 years.

Push email is an email system that provides an always-on capability, in which when new email arrives at the mail delivery agent (MDA), it is immediately, actively transferred (pushed) by the MDA to the mail user agent (MUA), also called the email client, so that the end-user can see incoming email immediately. This is in contrast with systems that check for new incoming mail every so often, on a schedule. Email clients include smartphones and, less strictly, IMAP personal computer mail applications.

The Motorola Q is a Windows Mobile smartphone first announced in the Summer of 2005 as a thin device with similar styling to Motorola's immensely popular RAZR. Motorola in a partnership with Verizon Wireless released the Q on May 31, 2006. A version for Sprint was released early in January 2007 and one for Amp'd Mobile in April 2007.

Mobile device management (MDM) is the administration of mobile devices, such as smartphones, tablet computers, and laptops. MDM is usually implemented with the use of a third-party product that has management features for particular vendors of mobile devices. Though closely related to Enterprise Mobility Management and Unified Endpoint Management, MDM differs slightly from both: unlike MDM, EMM includes mobile information management, BYOD, mobile application management and mobile content management, whereas UEM provides device management for endpoints like desktops, printers, IoT devices, and wearables as well.

Bluebugging is a form of Bluetooth attack often caused by a lack of awareness. It was developed after the onset of bluejacking and bluesnarfing. Similar to bluesnarfing, bluebugging accesses and uses all phone features but is limited by the transmitting power of class 2 Bluetooth radios, normally capping its range at 10–15 meters. However, the operational range can be increased with the use of a directional antenna.

The Nokia 7650 is a 2.5G consumer-oriented mobile phone belonging to the fashion and experimental (7xxx) series. It was introduced in Barcelona on 19 November 2001, and was described by CEO Jorma Ollila as the company's most important launch of that year.

Bluetooth advertising is a method of mobile marketing that utilizes Bluetooth technology to deliver content such as message, information, or advertisement to mobile devices such as cellular phones or tablet computers. Bluetooth advertising can also be received via laptop or personal digital assistants (PDAs).

The form factor of a mobile phone is its size, shape, and style, as well as the layout and position of its major components.

<span class="mw-page-title-main">Sony Ericsson Xperia X10</span> High-end smartphone by Sony Ericsson

The Sony Ericsson Xperia X10 is a 2010 high end smartphone in the Xperia series designed by Sony Ericsson. It was the first Sony Ericsson smartphone to run the Android operating system, and was designed to be the successor of the Xperia X2. The phone was shipped with Android 1.6 (Donut), but an upgrade to 2.1 (Eclair) was made available starting 31 October 2010, with a gradual international rollout. Originally, Sony Ericsson stated that the X10 would not receive an upgrade to Android 2.2 (Froyo) or beyond, but the phone was later upgraded to 2.3.3 (Gingerbread) with the updates starting on 29 July 2011.

<span class="mw-page-title-main">Symbian</span> Discontinued mobile operating system

Symbian is a discontinued mobile operating system (OS) and computing platform designed for smartphones. It was originally developed as a proprietary software OS for personal digital assistants in 1998 by the Symbian Ltd. consortium. Symbian OS is a descendant of Psion's EPOC, and was released exclusively on ARM processors, although an unreleased x86 port existed. Symbian was used by many major mobile phone brands, like Samsung, Motorola, Sony Ericsson, and above all by Nokia. It was also prevalent in Japan by brands including Fujitsu, Sharp and Mitsubishi. As a pioneer that established the smartphone industry, it was the most popular smartphone OS on a worldwide average until the end of 2010, at a time when smartphones were in limited use, when it was overtaken by iOS and Android. It was notably less popular in North America.

References

  1. Dagon, D.; Martin, T.; Starner, T. (2004-01-01). "Mobile Phones as Computing Devices: The Viruses are Coming!". IEEE Pervasive Computing. 3 (4): 11–15. doi:10.1109/MPRV.2004.21. ISSN   1536-1268. S2CID   14224399.
  2. "Bluejacking 'a harmless prank'". 25 November 2003.
  3. Do You Speak American . Words That Shouldn't Be? . Sez Who? . Cyberspace | PBS
  4. Bluejacking ‘a harmless prank'
  5. "I did somthing that can be conciderd as a bluetooth rampage!".
  6. "Introduction and overview", Educational Leadership, Cambridge University Press, pp. 1–5, 2007-01-22, doi:10.1017/cbo9781139168564.001, ISBN   978-0-521-68512-2 , retrieved 2024-02-16
  7. 1 2 bluejackQ.com :: Index Archived October 5, 2006, at the Wayback Machine
  8. bluejackQ and jellyellie in the media - bluejackQ.com Archived October 5, 2006, at the Wayback Machine