Jump to content

Welcome to ExtremeHW

Welcome to ExtremeHW, register to take part in our community, don't worry this is a simple FREE process that requires minimal information for you to signup.

 

Registered users can: 

  • Start new topics and reply to others.
  • Show off your PC using our Rig Creator feature.
  • Subscribe to topics and forums to get updates.
  • Get your own profile page to customize.
  • Send personal messages to other members.
  • Take advantage of site exclusive features.
  • Upgrade to Premium to unlock additional sites features.
Tech & Science News Posting Rules
IGNORED

Undocumented "backdoor" found in Bluetooth chip used by a billion devices

Kaz

By Kaz
in Technology and Science

 Share

Recommended Posts

Kaz

Kaz

News Editor
338 320
Posted
Posted (edited)
  Quote

 

The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an undocumented "backdoor" that could be leveraged for attacks.

The undocumented commands allow spoofing of trusted devices, unauthorized data access, pivoting to other devices on the network, and potentially establishing long-term persistence.

...

The researchers warned that ESP32 is one of the world's most widely used chips for Wi-Fi + Bluetooth connectivity in IoT (Internet of Things) devices, so the risk of any backdoor in them is significant.

 

Expand  

 

esp32.jpg

bleeping.ico Undocumented "backdoor" found in Bluetooth chip used by a billion devices

WWW.BLEEPINGCOMPUTER.COM
The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an...

 

This feeds into what Christopher Domas was saying about the concerns of hardware back doors and the potential for hidden commands.  It's why the U.S. developed the Chips and Science Act to subsidize chip manufacturing in the US.  I don't think hardware designers are done trying to backdoor their equipment.

 

Domas went to work for Intel and has been quiet ever since...

 

There's a reason IOT is scorned upon in the information security sector.  If it doesn't need to connect to the internet, it probably shouldn't.  I am greatly opposed to Apple and Amazon feeding internet connections to other devices they own if they don't have their own internet connection. 

Edited by Kaz
Fixed quote.
  • Agreed 1
See all user awards
Link to comment
Share on other sites
schuck6566

schuck6566

Members
923 741
Posted
Posted
  On 09/03/2025 at 06:24, Kaz said:

 

esp32.jpg

bleeping.ico Undocumented "backdoor" found in Bluetooth chip used by a billion devices

WWW.BLEEPINGCOMPUTER.COM
The ubiquitous ESP32 microchip made by Chinese manufacturer Espressif and used by over 1 billion units as of 2023 contains an...

 

This feeds into what Christopher Domas was saying about the concerns of hardware back doors and the potential for hidden commands.  It's why the U.S. developed the Chips and Science Act to subsidize chip manufacturing in the US.  I don't think hardware designers are done trying to backdoor their equipment.

 

Domas went to work for Intel and has been quiet ever since...

 

There's a reason IOT is scorned upon in the information security sector.  If it doesn't need to connect to the internet, it probably shouldn't.  I am greatly opposed to Apple and Amazon feeding internet connections to other devices they own if they don't have their own internet connection. 

Expand  

The last thing I should have to do is turn off the option to connect to wireless devices that are in reach but not currently connected to my network. That option is on by default with Amazon. WHY would I even want to create a connection to some wireless printer in my apt building that I have no clue who owns it?Why would I let other devices randomly connect to the Internet with my service?馃檮

  • Agreed 1
See all user awards
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing


  • Create New...

Important Information

This Website may place and access certain Cookies on your computer. ExtremeHW uses Cookies to improve your experience of using the Website and to improve our range of products and services. ExtremeHW has carefully chosen these Cookies and has taken steps to ensure that your privacy is protected and respected at all times. All Cookies used by this Website are used in accordance with current UK and EU Cookie Law. For more information please see our Privacy Policy

  I accept