Undocumented "backdoor" found in Bluetooth chip used by a billion devices
![[Post New]](/jforum/templates/default/images/icon_minipost_new.gif){kind=icon}
Anonymous
|
Undocumented "backdoor" found in Bluetooth chip used by a billion devices
By Bill Toulas | March 8, 2025 The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented "backdoor" that could be leveraged for attacks. The undocumented commands allow spoofing of trusted devices, unauthorized data access, pivoting to other devices on the network, and potentially establishing long-term persistence. This was discovered by Spanish researchers Miguel Tarascó Acuña and Antonio Vázquez Blanco of Tarlogic Security, who presented their findings yesterday at RootedCON in Madrid. "Tarlogic Security has detected a backdoor in the ESP32, a microcontroller that enables WiFi and Bluetooth connection and is present in millions of mass-market IoT devices," reads a Tarlogic announcement shared with BleepingComputer. "Exploitation of this backdoor would allow hostile actors to conduct impersonation attacks and permanently infect sensitive devices such as mobile phones, computers, smart locks or medical equipment by bypassing code audit controls." The researchers warned that ESP32 is one of the world's most widely used chips for Wi-Fi + Bluetooth connectivity in IoT (Internet of Things) devices, so the risk of any backdoor in them is significant. More: https://www.bleepingcomputer.com/news/securit...y-a-billion-devices/ |
Anonymous
|
Duh.
EVERYTHING digital that is connected/wifi/etc. is compromised one way or the other. |
Anonymous
How profound. You're so brilliant! |
Anonymous
Stating the obvious doesn't make one brilliant. Neither does sarcasm. |
Anonymous
| It’s always best to leave wifi and Bluetooth off if you’re not using them. I know a lot of people who have them and gps on constantly though. Then they complain their battery has 1% left. |