NewNow you can hear Fox News article!
Bluetooth headphones are considered to make life easier. You put them, play and forget that they exist. But researchers have found that some of the most popular audio products in the market are more than streaming your playlist.
Cyber security firm Eranw has revealed that 29 devices using Aeroha Bluetooth chips are unsafe for attacks that can highlight your personal data or snow on your interaction. The affected tools come from famous brands including Bose, Sony, JBL, Jabra and Marshall. They include headphones, earbuds, speakers and wireless microphones.
Sign up for my free cyber report
Take my best technical tips, immediate safety alerts and exclusive deals directly to your inbox. Also, when you join me, you will get immediate access to my last scam survival guide Cyberguy.com/newsletter
FBI warns more than 1 million Android devices kidnapped by Malware
A pair of Bluetooth headphones next to a laptop (Kurt “Cybergui” Notson)
Bluetooth defects
Bluetooth flaws in question are usually manufactured in the aeroha chips used in the correct wireless audio devices, as reported by BlappingCopper. Three flaws were revealed, each allowing an attacker to achieve some levels of unauthorized access. The most severe defect allows an attacker to read or manipulate the data by exploiting the custom protocol used by the chip. All three flaws have been assigned official CVE numbers and scored between moderate and high severity.
What is Artificial Intelligence (AI)?
To be clear, these are not accidental attacks. They require closeness and technical expertise. But when successful, the results are related. Researchers showed that they could be played to call logs, contact lists and media. They could also force a phone to call the user without knowledge. Once connected, they could listen to any sound that the phone was picked up.
In a proof-off-concept, researchers reconstructed the Bluetooth link from the headphone memory. This allowed them to replicate the device and kidnap the connection to the phone. With that access, they can release commands using Bluetooth hand-free profile, which is the feature available in most modern phones.
A pair of Bluetooth headphones (Kurt “Cybergui” Notson)
The list of Bluetooth headphones and audio devices is unsafe for aeroha chip security falls
ERNW researchers have identified the following devices as weakened:
- Beyerdynamic Amiron 300
- Bose quitcomfort earbuds
- Earismax Bluetooth auracast sender
- Jabra elite 8 active
- JBL endurance race 2
- JBL live buds 3
- Jlab epic Air Sport ANC
- Marshal Acton III
- Marshal Major V
- Marshal Minor IV
- Marshal Motif II
- Marshal Stanmore III
- Marshal Vobern III
- Moeerlabs echobeatz
- Soni CH -720n
- Sony Link Buds
- Soni Alt Wear
- Sony WF-1000xm3
- Sony WF-1000xm4
- Sony WF-1000xm5
- Sony WF-C500
- Sony WF-C510-GFP
- Sony WH-1000xm4
- Sony wh-1000xm5
- Sony it-1000xm6
- Sony WH-C520
- Sony WH-XB910n
- Sony Wi-C100
- Teufel Tatws2
Get Fox Business when you click here
Keep in mind that not every product affected by these weaknesses can be included in this list. As more research emerges, the list can change. In addition, not every device encounters all the same risks. For example, at least one manufacturer has already addressed the CVE-2025-20700 and CVE-2025-20701. However, we do not know if this fix was deliberate or accidental.
Due to these factors, getting a complete and accurate picture that the devices are really safe, remains a challenge. As a consumer, you should be cautious to updates and check with the manufacturer of your device for the latest information.
A pair of Bluetooth headphones (Kurt “Cybergui” Notson)
Firmware updates roll out but intervals remain
AIROHA has addressed weaknesses in its software development kit (SDK) and released an updated version to device manufacturers in early June. These manufacturers are now responsible for creating and distributing firmware updates for affected products. If you have not seen any update yet, it should arrive soon, although some may be available in advance.
However, there is a grip. According to a report by the German outlet Hees, many of the most recent firmware updates for the affected equipment were released by Aeroha before providing their official fix. This means that some products are still running weak code, despite being updated.
To make cases more complex, consumers are usually not directly informed about these updates. Firmware patches for headphones and similar devices often install quietly, or in some cases, cannot be distributed at all. As a result, most users have no way to know whether their equipment is safe or still exposed to risk.
We reached all 10 companies for a comment, but did not hear back before our time limit.
5 ways you can be safe from Bluetooth weaknesses
1. Check for regular firmware updates: Go to the manufacturer’s app or website to manually check for firmware updates, even if you have not received any information. Automatic updates are not always reliable, especially for headphones and earbuds.
2. Close Bluetooth when not used: Disable Bluetooth when you are not actively using it, it reduces your exposure window and makes it difficult for the attackers to target your device.
3. Use equipment in low -risk areas: Since these attacks require closeness, avoid using Bluetooth audio devices in crowds or unfamiliar public places, where any weaknesses can be taken advantage of.
4. Couple equipment with only reliable sources: Avoid pairing your Bluetooth headphone with unfamiliar phones, computers or public terminals. Once coupled, those equipment can sometimes maintain a connection or re -establish one without your knowledge, if they compromise, they can increase the risk of misuse.
5. Remove unused coupled tools: Go to your Bluetooth settings and remove the old or unfamiliar pair. This helps prevent unauthorized prevention from already reliable devices that can now be compromised.
Click here to get Fox News app
Kurt’s key to Techway
The real concern here is not Bluetooth defect, but what happens when the software inside everyday devices fails quietly. Such weaknesses are not uncommon, but the way they are handled often leaves users in the dark. Such problems will continue till the consumers can see or control the software running inside their headphones.
Should manufacturers need to directly inform users when safety defects are discovered in their products? Write us and tell us Cyberguy.com/Contact
Sign up for my free cyber report
Take my best technical tips, immediate safety alerts and exclusive deals directly to your inbox. In addition, you will get immediate access to my final scam survival guide – when you join me Cyberguy.com/newsletter
Copyright 2025 cyberguy.com. All rights reserved.
