A potential security issue has been discovered by cybersecurity researchers that has the capability to affect more than one billion devices.
According to researchers at the cybersecurity firm Tarlogic8+ Archives a hidden command has been foundcoded into a bluetooth chip installed in devices around the world. This secret functionality can be weaponized by bad actors and, according to the researchers, used as an exploit into these devices.
Using these commands, hackers could impersonate a trusted device and then connect to smartphones, computers, and other devices in order to access information stored on them. Bad actors can continue to utilize their connection to the device to essentially spy on users.
The bluetooth chip is called ESP32 and is manufactured by the China-based company Espressif. According to researchers, the ESP32 is "a microcontroller that enables WiFi and Bluetooth connection." In 2023, Espressif reported that one billion units of its ESP32 chip had been sold globally. Millions of IoT devices like smart appliances utilize this particular ESP32 chip.
Tarlogic researchers say that this hidden command could be exploited, which would allow "hostile actors to conduct impersonation attacks and permanently infect sensitive devices such as mobile phones, computers, smart locks or medical equipment by bypassing code audit controls." Tarlogic says that these commands are not publicly documented by Espressif.
Researchers with Tarlogic developed a new Bluetooth driver tool in order to aid in Bluetooth-related security research, which enabled the security firm to discover a total of 29 hidden functionalities that could be exploited to impersonate known devices and access confidential information stored on a device.
According to Tarlogic, Espressif sells these bluetooth chips for roughly $2, which explains why so many devices utilize the component over higher costing options.
As BleepingComputerreports, the issue is being tracked as CVE-2025-27840.
Topics Bluetooth Cybersecurity
Best outdoor deals: Save up to 50% at REI and Amazon to prep for camping season
Target's Black Friday sale is live — check out the deals here
The Man Who Spent Four Decades Interviewing Teen Stars
Puerto Rico Sketchbook: The Radical Arts Collective by Molly Crabapple
Best travel deal: Score the Frontier Go Wild! summer pass for just $399
Staff Picks: Vengeance, Evil, and Grace
Love online: The 8 best and funniest tweets of Valentine's week
The Baby, the Book, and the Bathwater
Trump gets failing grade for Puerto Rico response from San Juan mayor
Scenes from Gerald Murnane’s Golf Club
'Severance' Season 3 gets confirmed by Apple
Aharon Appelfeld: “You cannot be a writer of death”
Massage gun Black Friday deal: $110 off TheraGun Prime in 2023
Instagram's broadcast channels are digital message boards for creators
The Kindle Scribe just dropped to its lowest price ever, but is it worth it?
How 'Bluey' taught me to let go and love dad rock
How to watch PSU vs. MSU football live streams: kickoff time, streaming deals, and more
Martin Luther King's Radical Anticapitalism
Best Apple TV+ deal: Get 3 months for $2.99 monthly
Robot Mop Black Friday deal: Over $150 off iRobot Braava Jet M6
The algorithms defining sexuality suck. Here's how to make them better.It looks like OnePlus is getting ready to finally launch a smartwatchHow Do I Break My Trash Addiction? by Sadie SteinTPR Softball: Failure’s No Success at All by Cody WiewandtDear Paris Review, What Books Impress a Girl? by Sadie SteinFake Books, Real Books, and YA Austen by The Paris ReviewErotic Classics, Christian Colleges, Dealbreakers by Sadie Stein'Hope this email finds you well' meme is painfully accurateAmazon unveils new Fire 11 Max, its biggest and sleekest tablet yetSaving St. Mark's by Lorin SteinHow Do I Break My Trash Addiction? by Sadie SteinThe activists fighting algorithms for a more just and equitable futureSacred Texts, Caravaggio, and Some Pigs by Sadie Stein'Quordle' today: See each 'Quordle' answer and hints for May 23Diplo debuts songs from ambient album on Calm app and yes, you did read that correctlyTwitter users report deleted tweets return, won't deleteWatch: Issue 201 in Action! by Noah Wunsch'Succession' star James Cromwell tweeted something important about Logan's eulogyThe algorithms defining sexuality suck. Here's how to make them better.This Side of Paradise by Rachael Maddux Chanel made a boomerang, and surprisingly people are not into it 'The Daily Show's massive tweet thread makes the GOP's hypocrisy perfectly clear The internet had a perfect rebuttal to Gregg Popovich calling out a 'dirty' play '12 Monkeys' Season 3 premiere preview: Cole fights his way to Cassie Hipsters have ruined a traditional Burmese dish and people can't cope Twitter is on fire as the Trump train goes off the rails Driving test that uses only your hearing is totally freaking people out Hands on with the HTC U 11 and its squeezable Edge Sense sides Apple patented a design for a pizza box because of course they did Man sends heartbreaking appeal to find last photo of late wife Drone owners will now have to register with the government in China Instagram is going after the best part of Snapchat in the worst way 'Grey's Anatomy' gets a firefighters spinoff because nothing ends anymore Apple Park Campus consumed the last 2 years of Steve Jobs' life Ransomware hackers are so desperate to explain Bitcoin they've set up IT departments Tesla teams with Vermont utility company for Powerwall energy grid Hollywood is getting its own hometown esports team Man takes a tumble celebrating his failed golf swing The first TV with built It won't be easy for WannaCry hackers to get their cash
1.1521s , 10112.296875 kb
Copyright © 2025 Powered by 【18+ Archives】,Exquisite Information Network