PoC to takeover Android using another Android by exploiting critical Bluetooth vulnerability to install #Metasploit payload without proper Bluetooth pairing (CVE-2023-45866) It still affects Android 10 and bellow mobile-hacker.com/2024/01/23/exp… #NetHunter

In a different 0-click exploit scenario: It is also possible to lock-out user from its smartphone by brute-forcing a lock-screen passcodes in a loop to trigger 30 seconds and then 60 seconds timeout. Injected key-presses are typed way faster then user taps to unlock the device.

How to prevent becoming a victim: 1) For Android 10 and below, the security patch is not available - so, turn off Bluetooth if not used 2) Android 11 and above, install 2023-12-05 security patch (if OEM already pushed it) 3) Don't start Discoverable Mode to disclose MAC address