1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Home Covid tests can be fooled by this Bluetooth bug

    From TechnologyDaily@1337:1/100 to All on Wed Dec 22 04:45:04 2021
    Home Covid tests can be fooled by this Bluetooth bug

    Date:
    Wed, 22 Dec 2021 04:30:53 +0000

    Description:
    A curious security researcher discovered a now-patched bug that allowed him
    to falsify at-home Covid test results.

    FULL STORY ======================================================================

    At a time when President Biden is preparing to make at-home Covid tests available to more Americans, a security researcher has discovered a flaw that could allow someone to change the results in one such test that has been granted emergency use authorization in the US.

    While there are now a number of at-home Covid-19 tests available, Elume
    offers a self-administered antigen test that individuals can use to check to see if they've contracted the virus. Instead of submitting a sample to a testing facility, the company's testing kit allows users to collect their own nasal sample and then test it using the included Bluetooth analyzer.

    The Bluetooth analyzer, which reports a user's test result to them as well as to health authorities using Elume's mobile app, caught the attention of F-Secure security consultant Ken Gannon who specializes in mobile security.

    During his investigation, Gannon found that it was possible to exploit a bug in the Bluetooth analyzer to change the results of a Covid test before they were reported to Ellume's app. Additionally, Gannon and a colleague were able to obtain a proof of observation certificate for a changed result from a third-party video observation service they were directed to by the company's website. Falsifying Covid test results

    After discovering that he could falsify the results of Ellume's at-home Covid tests, Gannon shared his findings with the company which launched an investigation, confirmed the problem and implemented several improvements to its tests to prevent users from tampering with their results.

    Gannon provided further insight on his discovery and how it could be abused
    by those looking to secure a negative Covid test every time in a press
    release , saying:

    Our research involved changing a negative test result to positive, but the process works both ways. Prior to Ellumes fixes, highly skilled individuals
    or organizations with cyber security expertise trying to circumvent public health measures meant to curb COVIDs spread, couldve done so by replicating our findings. Someone with the proper motivation and technical skills couldve used these flaws to ensure they, or someone theyre working with, gets a negative result every time theyre tested.

    Although Gannon first decided to investigate the Bluetooth analyzer used in Ellume's at-home Covid test out of curiosity, he pointed out that other individuals or organizations can leverage similar security flaws to
    circumvent public health measures. Thankfully though, Eludme's at-home Covid tests are now even more secure thanks to Gannon's discovery and the fact that he responsibly disclosed his findings to the company.

    We've also highlighted the best hybrid working tech , best business webcams and best video conferencing software



    ======================================================================
    Link to news story: https://www.techradar.com/news/home-covid-tests-can-be-fooled-by-this-bluetoot h-bug/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)