![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
thewayneThis is one specific manufacturer, WHIIL. Researchers found that the Bluetooth channel, used normally for configuring the wheelchair upon delivery and for service, was completely unsecure. No authentication, no certificates, no nothing.
The researchers were able to take complete control of the wheelchair, making it run at top speed (5 MPH) and sent it careening down stairs.
One comment on Bruce Schneier's blog commented about OpenBSD, a Unix fork that prides itself on being very secure. They do not support Bluetooth at all. When asked about it, they said that the Bluetooth stack cannot be secured. I'm surprised that something like a wheelchair interface isn't secured with just a panel and a USB cable. Simple controlled physical access. The scariest part is that they can now do Bluetooth well over half a mile, both send and receive - so theoretically hacks like this and transactions can be phished and the baddies are no where near you.
https://www.securityweek.com/researchers-expose-whill-wheelchair-safety-risks-via-remote-hacking/
https://www.schneier.com/blog/archives/2026/01/hacking-wheelchairs-over-bluetooth.html
The researchers were able to take complete control of the wheelchair, making it run at top speed (5 MPH) and sent it careening down stairs.
One comment on Bruce Schneier's blog commented about OpenBSD, a Unix fork that prides itself on being very secure. They do not support Bluetooth at all. When asked about it, they said that the Bluetooth stack cannot be secured. I'm surprised that something like a wheelchair interface isn't secured with just a panel and a USB cable. Simple controlled physical access. The scariest part is that they can now do Bluetooth well over half a mile, both send and receive - so theoretically hacks like this and transactions can be phished and the baddies are no where near you.
https://www.securityweek.com/researchers-expose-whill-wheelchair-safety-risks-via-remote-hacking/
https://www.schneier.com/blog/archives/2026/01/hacking-wheelchairs-over-bluetooth.html
