Wireless Headphones: Bluetooth Backdoor for Hackers?

by Anika Shah - Technology
0 comments

Critical Bluetooth Vulnerability Exposes Millions to Hacking Risk

Table of Contents

Your wireless headphones could be a gateway for hackers to access your phone and personal data. A recently discovered vulnerability in bluetooth chips manufactured by Airoha affects an estimated 70 million devices, allowing attackers to potentially eavesdrop on users, control their phones, and steal sensitive details. This issue, assigned a critical CVSS score of 9.6/10, highlights a notable risk to privacy and data security.

The Root of the Problem: The RACE Protocol

The vulnerability stems from an oversight in securing the proprietary Remote Access Control Engine (RACE) protocol. This protocol is designed for debugging and firmware updates during the manufacturing process, but it was not deactivated before the headphones were shipped to consumers. this allows unauthorized access to the headphones via Bluetooth or Bluetooth low Energy (BLE) without requiring pairing or authentication [1].

How Attackers Can Exploit the Vulnerability

An attacker within a 10-meter range can silently connect to vulnerable headphones, gaining access to stored data and potentially taking control of the connected device. This access allows attackers to:

  • Extract cryptographic keys used for authentication.
  • Activate voice assistants and make calls.
  • Record audio and access contacts.
  • gain full control of the paired phone, even bypassing existing security measures.

The potential for account theft is notably concerning. Attackers can intercept authentication codes sent via SMS, enabling them to compromise accounts on platforms like WhatsApp and Amazon.

Affected Devices

The vulnerability impacts a wide range of headphone brands. Some confirmed affected models include:

  • Sony WH-1000XM4, WH-1000XM5, WH-1000XM6, WF-1000XM5, LinkBuds S
  • Bose QuietComfort Earbuds
  • Marshall Major V, Minor III, Stanmore III
  • JBL Live Buds 3, Endurance Race 2
  • Beyerdynamic Amiron 300
  • devil Tatws2
  • JLab Epic Air Sport ANC

This list is not exhaustive, and many other devices may be affected. Notably, Apple AirPods are currently not believed to be vulnerable.

What Can You Do to Protect Yourself?

the primary solution is to update your headphone’s firmware to the latest version, if available. Manufacturers have begun releasing patches to address this vulnerability. However,many older or cheaper models may not receive updates due to a lack of manufacturer support.

Here are additional steps you can take:

  • update Firmware: Check your headphone manufacturer’s app for available updates.
  • Disable Bluetooth When Not in Use: reduce the window of chance for attackers.
  • Remove Unused Devices: Delete paired devices you no longer use from your phone’s Bluetooth settings.
  • Avoid Public Pairing: Be cautious when pairing devices in public or untrusted locations.
  • Consider Wired Headphones: For high-security situations, wired headphones offer the most secure option.

current Status and Patch Availability

Airoha released a patch on June 4, 2025, but as of January 6, 2026, many headphones remain vulnerable due to delayed or absent updates from manufacturers. Some companies have quietly addressed the issue, while others have yet to release a fix.

Publication Date: 2026/01/06 00:00:45

Related Posts

Leave a Comment