-1

Undocumented "backdoor" found in Bluetooth chip used by a billion devices [ESP32] (www.bleepingcomputer.com)

submitted 1 month ago by realitista@lemm.ee to c/homeassistant@lemmy.world

6 comments fedilink hide all child comments

cross-posted from: https://sopuli.xyz/post/23587111

Archive: https://archive.is/2025.03.08-191658/https://www.bleepingcomputer.com/news/security/undocumented-backdoor-found-in-bluetooth-chip-used-by-a-billion-devices/

The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented "backdoor" that could be leveraged for attacks.

The undocumented commands allow spoofing of trusted devices, unauthorized data access, pivoting to other devices on the network, and potentially establishing long-term persistence.

This was discovered by Spanish researchers Miguel Tarascó Acuña and Antonio Vázquez Blanco of Tarlogic Security, who presented their findings yesterday at RootedCON in Madrid.

you are viewing a single comment's thread
view the rest of the comments

[-] STOMPYI@lemmy.world 4 points 1 month ago

From what I've read you need a physical usb connection to access this loophole.

[-] snausagesinablanket@lemmy.world 1 points 1 month ago

Better call in Zero_Cool and Acid_Burn.

[-] acockworkorange@mander.xyz 1 points 1 month ago

Wasn’t it Crash Override and Acid Burn?

[-] SidewaysHighways@lemmy.world 1 points 1 month ago

hack the planet!

this post was submitted on 09 Mar 2025

-1 points (40.0% liked)

homeassistant

13834 readers

25 users here now

Home Assistant is open source home automation that puts local control and privacy first. Powered by a worldwide community of tinkerers and DIY enthusiasts. Perfect to run on a Raspberry Pi or a local server. Available for free at home-assistant.io

founded 2 years ago

MODERATORS

GreatAlbatross@feddit.uk

greatalbatross@lemmy.world