Researchers from Germany’s Technische Universität Darmstadt discovered a flaw in Android’s Bluetooth configuration that allows hackers to inject custom code without a user knowing.
If left unaddressed, this could allow undetectable, short-distance cyberattacks against millions of Android users around the world.
Coincidentally, only older versions of Android seem to be affected. Android 10 lacks the vulnerability and is considered safe to use with Bluetooth turned on. A hacker could still attempt to attack you, but all that would happen is a Bluetooth crash.
But it’s a different story if you’re on Android 9 Pie, Android 8/8.1 Oreo or earlier software. With the flaw out in the open, a hacker can instantly connect to your phone and mess things up. Researchers say updating your phone is the only real way to stay safe.
Well, that and keeping Bluetooth off when you’re out.