A potential security issue has been discovered by cybersecurity researchers that has the capability to affect more than one billion devices.
According to researchers at the cybersecurity firm Tarlogic,Street Stall (2015) a hidden command has been foundcoded into a bluetooth chip installed in devices around the world. This secret functionality can be weaponized by bad actors and, according to the researchers, used as an exploit into these devices.
Using these commands, hackers could impersonate a trusted device and then connect to smartphones, computers, and other devices in order to access information stored on them. Bad actors can continue to utilize their connection to the device to essentially spy on users.
The bluetooth chip is called ESP32 and is manufactured by the China-based company Espressif. According to researchers, the ESP32 is "a microcontroller that enables WiFi and Bluetooth connection." In 2023, Espressif reported that one billion units of its ESP32 chip had been sold globally. Millions of IoT devices like smart appliances utilize this particular ESP32 chip.
Tarlogic researchers say that this hidden command could be exploited, which would allow "hostile actors to conduct impersonation attacks and permanently infect sensitive devices such as mobile phones, computers, smart locks or medical equipment by bypassing code audit controls." Tarlogic says that these commands are not publicly documented by Espressif.
Researchers with Tarlogic developed a new Bluetooth driver tool in order to aid in Bluetooth-related security research, which enabled the security firm to discover a total of 29 hidden functionalities that could be exploited to impersonate known devices and access confidential information stored on a device.
According to Tarlogic, Espressif sells these bluetooth chips for roughly $2, which explains why so many devices utilize the component over higher costing options.
As BleepingComputerreports, the issue is being tracked as CVE-2025-27840.
Topics Bluetooth Cybersecurity
Broncos vs. Bills 2025 livestream: How to watch NFL online
Best Apple Pencil Pro deal: Save $30 at Best Buy
Fritz vs. Monfils 2025 livestream: Watch Australian Open for free
CES 2025: How to buy (and save $390 on) the Dreame X50 Ultra robot vacuum
Ruggable x Jonathan Adler launch: See the new designs
Hands on with Lenovo's 'rollable' display laptop at CES 2025
NYT Connections hints and answers for January 16: Tips to solve 'Connections' #585.
The 12 Best Games on the iPhone
Video Games Are Better The Second Time You Play Them
How to make a hook in a TikTok video
Get a free soundbar when you buy a 34
Nickelodeon announced 'Tiny Chef' was cancelled. The internet can't handle it.
NYT Connections Sports Edition hints and answers for January 16: Tips to solve Connections #115
Lehecka vs. Dimitrov 2025 livestream: Watch Brisbane International for free
Best IPL deal: Save $80 on Braun IPL Silk·Expert
Best smart scale deal: Save over $25 on Renpho Smart Scale
Best IPL deal: Save $80 on Braun IPL Silk·Expert
Texas vs. Arizona State football livestreams: kickoff time, streaming deals, and more
NYT Connections Sports Edition hints and answers for January 28: Tips to solve Connections #127
VidCon 2025: Creators share their mistakes and lessons learned
China's answer to PayPal is coming to the rest of AsiaMiranda Kerr is really feeling the wrath of Spiegel's alleged India commentsOf course Taika Waititi cameos as a huge stone alien in 'Thor: Ragnarok'This apple core could genuinely be the Eye of SauronThis hot videoNow you can get a halfHey, hiring managers — throw that beer test out the windowThe brain interprets sarcasm in emoji the same way as verbal communication, study showsXiaomi Mi 6 brings Galaxy S8Miranda Kerr is really feeling the wrath of Spiegel's alleged India commentsGoogle, the world's top advertising company, is building an ad blocker for ChromeChili gives Alex Jones amnesia and other odd things we learned at his custody trialMiranda Kerr is really feeling the wrath of Spiegel's alleged India commentsLook how much smaller Trump's visit from the New England Patriots was than Obama'sHey, hiring managers — throw that beer test out the windowStarbucks barista goes on spectacularly angry rant about Unicorn FrappuccinosXiaomi Mi 6 brings Galaxy S8The state with the most polluted cities probably won't surprise youPolice arrest Chihuahua for jay walking and 2 counts of assault'Pretty Little Liars' boss teases 'brutal' Season 7 endgame Pope unwittingly tweets support for NFL team and look, it was bound to happen The 15 best films of the 2010s 'Gone Girl' gave a face to an ancient monster of myth #FacebookLockout: Facebook users report being locked out for reporting scammers and fake accounts Atari's retro console project appears to be completely falling apart Amazingly, Donald Trump still doesn't know how to shake a hand Trump said, 'See you in court' and the internet replied, 'What?' CNN asked the Democratic candidates about Ellen, instead of asking them *literally anything else Donald Trump's inauguration poster has an embarrassing typo States that made the switch to Indigenous Peoples' Day this year Chance the Rapper will both host and perform on 'SNL; this October 9 photos that show Typhoon Hagibis' destruction Website peddling 26 million stolen credit and debit cards got hacked Blue Ivy joins James Corden for Carpool Karaoke, rendering previous Carpool Karaokes irrelevant J.K. Rowling calls out Piers Morgan after he claims he's never read 'Harry Potter' Google's unique new Chromebook laptop leaked in photos and video Wow, this gang of squirrel monkey babies is very adorable What's going on with Blizzard esports, Blitzchung, and China? The 'Friends' cast finally reunited for a sweet selfie: Photo Full Tesla memory cards aren't bricking older cars, but you'd better replace them
3.34s , 8206.4609375 kb
Copyright © 2025 Powered by 【Street Stall (2015)】,Information Information Network