Using any Bluetooth piconet as the bases of your answer and an example, explain
how the following attacks work:
A. Bluejacking.
Bluejacking is a type of attack that exploits the vulnerability of Bluetooth-enabled devices to send unsolicited messages or contact cards without the user's consent. It is mostly harmless and is used primarily for mischief purposes rather than causing damage or stealing sensitive information.
The attack works by harnessing the broadcast functionality of Bluetooth devices. When one device is set to discoverable mode, it constantly sends out signals to establish connections with nearby devices. These signals can be intercepted by any Bluetooth-enabled device within range. The attacker uses this opportunity to send a message to the target device.
To illustrate how Bluejacking works, let's consider an example scenario:
John is attending a crowded conference where people are constantly using their smartphones. Mary, who has knowledge of Bluejacking, spots John's iPhone in discoverable mode. She decides to have a little fun and sends him a message anonymously.
Mary then uses her own smartphone, which has Bluetooth capabilities, to search for nearby devices. She discovers John's iPhone and decides to send a message saying, "You are being watched!" without revealing her identity. Since John's iPhone is in discoverable mode, it receives Mary's message as a notification.
When John receives the message, he may be initially confused as to how someone unknown was able to send him a message. However, Bluejacking does not grant the attacker access to any personal data on the target device. While it may cause some annoyance or confusion, Bluejacking is generally harmless.
It's important to note that Bluejacking is not a serious security threat as it mainly relies on the interception of signals and sending unsolicited messages. However, it highlights the importance of keeping Bluetooth devices in non-discoverable mode when not in use to prevent such intrusions.