Undocumented “backdoor” found in Bluetooth chip used by a billion devices

An undocumented “backdoor” was discovered in the ESP32 microchip, commonly used in IoT devices. The backdoor, consisting of 29 undocumented commands, allows for memory manipulation, MAC address spoofing, and packet injection, potentially enabling attacks on sensitive devices. The researchers emphasized the significant risk posed by the backdoor, especially in the context of IoT devices and Bluetooth security.