#whisperpair — Public Fediverse posts

The paper on the security analysis of Google Fast Pair has been accepted at IEEE S&P (Oakland) 2026. It presents the first in-the-wild security analysis of Fast Pair and uncovers systemic ecosystem-wide failures.

#whisperpair #google #fastpair #bluetooth

https://whisperpair.eu/

Массовая слежка по Bluetooth

Радиосигнал Bluetooth принимается только на близком расстоянии. Однако он не такой безопасный, как принято считать. На самом деле многие Bluetooth-устройства делают человека уязвимым для слежки. Недавно открытые уязвимости позволяют злоумышленнику выполнить скрытное сопряжение, а затем отслеживать местоположение устройства через интернет, а также использовать его как удалённый микрофон для дистанционного прослушивания. Более того, даже обычное пассивное сканирование окружающей среды — сбор «цифровых крошек» на протяжении недель — раскрывает массу приватных деталей о соседях.

https://habr.com/ru/companies/globalsign/articles/1013398/

#Bluetooth #утечка_информации #Bluehood #уязвимость #WhisperPair #Google_Fast_Pair #Find_Hub #слежка #BLE

Ars Technica: Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack. “A team of security researchers from Belgium’s KU Leuven University has revealed a vulnerability dubbed WhisperPair that allows an attacker to hijack Fast Pair-enabled devices to spy on the owner.”

Ars Technica: Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack. “A team of security researchers from Belgium’s KU Leuven University has revealed a vulnerability dubbed WhisperPair that allows an attacker to hijack Fast Pair-enabled devices to spy on the owner.”

Ars Technica: Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack. “A team of security researchers from Belgium’s KU Leuven University has revealed a vulnerability dubbed WhisperPair that allows an attacker to hijack Fast Pair-enabled devices to spy on the owner.”

Ars Technica: Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack. “A team of security researchers from Belgium’s KU Leuven University has revealed a vulnerability dubbed WhisperPair that allows an attacker to hijack Fast Pair-enabled devices to spy on the owner.”

🎧 #COSIC research on #Bluetooth earbuds & speakers vulnerable to hacking & tracking, featured in NY Times Wirecutter. https://www.nytimes.com/wirecutter/reviews/bluetooth-earbuds-hacking-threat/
▶️ Demo: https://youtube.com/watch?v=-j45ShJINtc
#KULeuven #nytimes #google #whisperpair #fastpair

Decine di produttori hanno implementato male Google Fast Pair.

La vulnerabilità WhisperPair consente il controllo remoto degli auricolari entro 15 metri.

Colpiti Sony, Xiaomi, Nothing e lo stesso Google.

🔒📱

#cybersecurity #fastpair #whisperpair

https://www.youtube.com/watch?v=-j45ShJINtc

WhisperPair : une faille de Fast Pair permet de détourner des casques et écouteurs, même sur iPhone http://dlvr.it/TQNn2l #WhisperPair #FastPair

"Un fallo en Fast Pair expone millones de auriculares y altavoces a un secuestro" (Ultima Hora)
https://www.ultimahora.es/noticias/tecnologia-videojuegos/2026/01/16/2550745/fallo-fast-pair-expone-millones-auriculares-altavoces-secuestro.html
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Sicherheitslücke macht Hörstöpsel zur Wanze" (Golem)
https://www.golem.de/news/google-fast-pair-sicherheitsluecke-macht-hoerstoepsel-zur-wanze-2601-204253.html
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Let op: hackers kunnen je locatie tracken via je oordopjes" (Android World)
https://androidworld.nl/nieuws/let-op-hackers-kunnen-je-tracken-via-je-oordopjes/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Miljoenen oordopjes en koptelefoons zijn kwetsbaar: wie luistert er met je mee?" (Bright)
https://www.bright.nl/nieuws/1731840/miljoenen-oordopjes-en-koptelefoons-zijn-kwetsbaar-wie-luistert-er-met-je-mee.html
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Many Bluetooth devices with Google Fast Pair vulnerable to “WhisperPair” hack" (ars Technica)
https://arstechnica.com/gadgets/2026/01/researchers-reveal-whisperpair-attack-to-eavesdrop-on-google-fast-pair-headphones/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Major security flaw affects Sony, Google, and other popular headphones" (Sound Guys)
https://www.soundguys.com/google-fast-pair-security-vulnerability-151293/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"WhisperPair attack exposes millions of Bluetooth devices to location tracking" (Cyber Insider)
https://cyberinsider.com/whisperpair-attack-exposes-millions-of-bluetooth-devices-to-location-tracking/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"WhisperPair Attack Leaves Millions of Audio Accessories Open to Hijacking" (Security Week)
https://www.securityweek.com/whisperpair-attack-leaves-millions-of-bluetooth-accessories-open-to-hijacking/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Leuvense onderzoeker over ‘kritiek’ lek in beveiliging van Bluetooth: 'Het grootste dat we ooit ontdekten'" (Het Belang van Limburg)
https://www.hbvl.be/binnenland/leuvense-onderzoeker-over-kritiek-lek-in-beveiliging-van-bluetooth-het-grootste-dat-we-ooit-ontdekten/123882505.html (paywall)
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Update your headphones: Fast Pair vulnerability could let attackers track your location" (Android Authority)
https://www.androidauthority.com/whisperpair-fast-pair-vulnerability-3632817/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Google Fast Pair devices need an immediate update for hacking risk" (Android Police)
https://www.androidpolice.com/fast-pair-devices-face-hackingrisk/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Many Google Fast Pair devices need an update to patch exploits that allowed attackers to track you" (9to5google)
https://9to5google.com/2026/01/15/google-fast-pair-devices-exploit-whisperpair/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Critical WhisperPair flaw lets hackers track, eavesdrop via Bluetooth audio devices" (Bleeping Computer)
https://www.bleepingcomputer.com/news/security/critical-whisperpair-flaw-lets-hackers-track-eavesdrop-via-bluetooth-audio-devices/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Bluetooth-accessoires kapen met Google Fast Pair": https://eng.kuleuven.be/nieuws-en-agenda/nieuws/bluetooth-accessoires-kapen-met-google-fast-pair
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Hijacking Bluetooth Accessories Using Google Fast Pair": https://eng.kuleuven.be/en/news-calendar/news-items/hijacking-bluetooth-accessories-using-google-fast-pair
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

Yesterday on Belgian Radio Joe FM, Prof. Preneel explained how COSIC can hijack Bluetooth devices via Google’s Fast Pair! 🎧
Watch the full demo: https://www.youtube.com/watch?v=-j45ShJINtc
#COSIC #KULeuven #WhisperPair #Google #FastPair #Bluetooth

"Leuvense onderzoekers vinden lek in Bluetooth pairingdienst Google" (Data News)
https://datanews.knack.be/nieuws/security/kwetsbaarheden/leuvense-onderzoekers-vinden-lek-in-bluetooth-pairingdienst-google/
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

"Ernstig beveiligingslek in Bluetooth-oortjes: ongemerkt meeluisteren én volgen mogelijk" (HLN)
https://www.hln.be/multimedia/ernstig-beveiligingslek-in-bluetooth-oortjes-ongemerkt-meeluisteren-en-volgen-mogelijk~a7dd5bde/?slug_rd=1
#cosic #kuleuven #WhisperPair #google #fastpair #bluetooth

Critical flaw lets hackers track, eavesdrop via Bluetooth audio devices:
Hundreds of Millions of Audio Devices Need a Patch to Prevent Wireless Hacking and Tracking
Flaws in how 17 models of #headphones and #speakers use #Google’s one-tap #FastPair #Bluetooth protocol have left devices open to eavesdroppers and stalkers.
https://www.wired.com/story/google-fast-pair-bluetooth-audio-accessories-vulnerability-patches/
https://archive.ph/pWKtT

#WhisperPair Affects: #Sony, #Jabra, #JBL, #Marshall, #Xiaomi, #Nothing, #OnePlus, #Soundcore, #Logitech, and Google itself.

Lilbits: WhisperPair can hijack your Google Fast Pair audio devices, Raspberry Pi’s new AI Hat+ 2 is here (but you probably don’t need it), and more

Google’s Fast Pair service makes it easy to quickly connect Bluetooth headphones, speakers, mice, and keyboards in just a few simple steps. But a recently discovered vulnerability makes it possible for someone to use Fast Pair to hijack your devices.

A group of security researchers in Belgium describe how an attack they call WhisperPair could let someone listen to audio from your earbuds or […]

Tonight at 19h on Belgian TV (#VTM NIEUWS), COSIC’s research shows how attackers can silently take over #Bluetooth earbuds - listening in or tracking users.
Watch a teaser from the 13h news (from 28:00): https://www.vtmgo.be/vtmgo/afspelen/39abc203-f1f5-418c-a7f4-df55f8b50162
#cosic #kuleuven #WhisperPair #google #fastpair

"Snelle bluetoothverbinding van Google maakt je kwetsbaar voor afluisterpraktijken" (TechPulse)
https://techpulse.be/nieuws/493761/snelle-bluetoothverbinding-van-google-maakt-je-kwetsbaar-voor-afluisterpraktijken/
#cosic #kuleuven #WhisperPair #google #fastpair