To date, the core Bluetooth protocols have remained largely free from any major discovered security vulnerabilities. Many of the current issues with Bluetooth devices are due to insecure architectures created by vendors, or simply bad code running Bluetooth devices. This makes dealing with Bluetooth securely a difficult proposition. Vulnerabilities can vary wildly from device to device, or even between different firmware versions of the same device.
This situation is only going to become more complicated as time goes on. With millions of Bluetooth devices arriving in consumers’ hands each week, the potential for introducing vulnerable products into your home or enterprise increases dramatically. Unfortunately, few tools are available to help secure you and your systems against threats from Bluetooth. At this point, education goes a long way. Once there’s an awareness of the scale of the threat that Bluetooth presents, vendors will be compelled to write more secure code and provide tools for us to secure and audit our infrastructure.