Someone, within a radius of ten meters, can divert the wireless connection of your helmet or your headphones. This scenario is not taken from a film, but from a demonstration made by Ernw, a German company specializing in cybersecurity. Its researchers identified three flaws in Airoha Bluetooth fleas, widely used in True Wireless Stereo headphones (TWS).
Too talkative headphones
These flaws-listed under the CVE-2025-20700, CVE-2025-20701 and CVE-2025-20702 codes-allow you to interfere with the link between the smartphone and the headphones. In their laboratory, the experts were able to initiate a remote call and listen to the sound environment captured by the phone. “” We have shown that it is possible to launch an arbitrary call and listen to sounds near the mobile They explain. Depending on the configuration, a hacker could also recover the call history and the contact list.
Before panicking, let us remember that these attacks are not within the reach of anyone. Both serious technical skills are needed and be in the immediate vicinity of the target: about ten meters in the best conditions. Another constraint: as the headphones can only be connected to one device at a time, the connection with the smartphone would jump if an intruder tried to graft there. Not very discreet, therefore.
That said, the list of products concerned impresses: Sony WH-1000XM4, XM5 and XM6, Bose Quietcomfort Earbuds, JBL Live Buds 3, Marshall Stanmore III, Jabra Elite 8 Active… in total 29 aircraft from ten manufacturers. Good news: Airoha has already corrected flaws in its development kit, and manufacturers work on firmware updates. Bad news: several models have not yet received a patch, and the latest updates available sometimes date back to last May, before leaving the fix.
In the meantime, the best reflex remains to regularly check the updates offered for helmets and headphones. And if your Bluetooth connection jumps without reason, a restart of the device allows you to find the link with your phone.
At the end of the day, your Bluetooth helmet is not a power micro spy, but it still deserves a small vigilance. Spying an average user is unlikely, but in some sensitive sectors – diplomacy, journalism, research -, it is better to keep the ear stretched and install updates.
🟣 To not miss any news on the Geek newspaper, subscribe to Google News and on our WhatsApp. And if you love us, .
