Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
Editorials & Other Articles
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
Science
Related: About this forumSecret commands found in Bluetooth chip used in a billion devices
Secret commands found in Bluetooth chip used in a billion devices
Researchers discovered what they're describing as a potential security issue that could affect a billion devices.
By Matt Binder on March 10, 2025
A potential security issue has been discovered by cybersecurity researchers that has the capability to affect more than one billion devices.
According to researchers at the cybersecurity firm Tarlogic, a hidden command has been found coded into a bluetooth chip installed in devices around the world. This secret functionality can be weaponized by bad actors and, according to the researchers, used as an exploit into these devices.
Using these commands, hackers could impersonate a trusted device and then connect to smartphones, computers, and other devices in order to access information stored on them. Bad actors can continue to utilize their connection to the device to essentially spy on users.
The bluetooth chip is called ESP32 and is manufactured by the China-based company Espressif. According to researchers, the ESP32 is "a microcontroller that enables WiFi and Bluetooth connection." In 2023, Espressif reported that one billion units of its ESP32 chip had been sold globally. Millions of IoT devices like smart appliances utilize this particular ESP32 chip.
Snip...
https://mashable.com/article/bluetooth-chip-cybersecurity-hidden-functionality-commands
Researchers discovered what they're describing as a potential security issue that could affect a billion devices.
By Matt Binder on March 10, 2025
A potential security issue has been discovered by cybersecurity researchers that has the capability to affect more than one billion devices.
According to researchers at the cybersecurity firm Tarlogic, a hidden command has been found coded into a bluetooth chip installed in devices around the world. This secret functionality can be weaponized by bad actors and, according to the researchers, used as an exploit into these devices.
Using these commands, hackers could impersonate a trusted device and then connect to smartphones, computers, and other devices in order to access information stored on them. Bad actors can continue to utilize their connection to the device to essentially spy on users.
The bluetooth chip is called ESP32 and is manufactured by the China-based company Espressif. According to researchers, the ESP32 is "a microcontroller that enables WiFi and Bluetooth connection." In 2023, Espressif reported that one billion units of its ESP32 chip had been sold globally. Millions of IoT devices like smart appliances utilize this particular ESP32 chip.
Snip...
https://mashable.com/article/bluetooth-chip-cybersecurity-hidden-functionality-commands
6 replies
= new reply since forum marked as read
Highlight:
NoneDon't highlight anything
5 newestHighlight 5 most recent replies

Secret commands found in Bluetooth chip used in a billion devices (Original Post)
littlemissmartypants
Monday
OP
erronis
(18,160 posts)1. More info from Forbes.
Doesn't look like it's paywalled.
https://www.forbes.com/sites/daveywinder/2025/03/10/identity-theft-warning-hidden-commands-in-1-billion-bluetooth-chips/
littlemissmartypants
(26,809 posts)4. Thanks for sharing this, erronis. ❤️
yellow dahlia
(1,817 posts)6. Thanks. n/t
erronis
(18,160 posts)2. I hope nobody has forgotten about BadUSB which may also be lurking in millions of devices.
Wonder Why
(5,263 posts)3. Downright ugly!
yellow dahlia
(1,817 posts)5. Thanks for sharing this. n/t