Technology
Google Fast Pair flaw lets hackers hijack headphones
NEWYou can now listen to Fox News articles!
Google designed Fast Pair to make Bluetooth connections fast and effortless. One tap replaces menus, codes and manual pairing. That convenience now comes with serious risk. Security researchers at KU Leuven uncovered flaws in Google’s Fast Pair protocol that allows silent device takeovers. They named the attack method WhisperPair. An attacker nearby can connect to headphones, earbuds or speakers without the owner knowing. In some cases, the attacker can also track the user’s location. Even more concerning, victims do not need to use Android or own any Google products. iPhone users are also affected.
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts, and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide — free when you join my CYBERGUY.COM newsletter.
APPLE WARNS MILLIONS OF IPHONES ARE EXPOSED TO ATTACK
Fast Pair makes connecting Bluetooth headphones quick, but researchers found that some devices accept new pairings without proper authorization. (Kurt “CyberGuy” Knutsson)
What WhisperPair is and how it hijacks Bluetooth devices
Fast Pair works by broadcasting a device’s identity to nearby phones and computers. That shortcut speeds up pairing. Researchers found that many devices ignore a key rule. They still accept new pairings while already connected. That opens the door to abuse.
Within Bluetooth range, an attacker can silently pair with a device in about 10 to 15 seconds. Once connected, they can interrupt calls, inject audio or activate microphones. The attack does not require specialized hardware and can be carried out using a standard phone, laptop, or low-cost device like a Raspberry Pi. According to the researchers, the attacker effectively becomes the device owner.
Audio brands affected by the Fast Pair vulnerability
The researchers tested 17 Fast Pair compatible devices from major brands, including Sony, Jabra, JBL, Marshall, Xiaomi, Nothing, OnePlus, Soundcore, Logitech and Google. Most of these products passed Google certification testing. That detail raises uncomfortable questions about how security checks are performed.
How headphones can become tracking devices
Some affected models create an even bigger privacy issue. Certain Google and Sony devices integrate with Find Hub, which uses nearby devices to estimate location. If a headset has never been linked to a Google account, an attacker can claim it first. That allows continuous tracking of the user’s movements. If the victim later receives a tracking alert, it may appear to reference their own device. That makes the warning easy to dismiss as an error.
GOOGLE NEST STILL SENDS DATA AFTER REMOTE CONTROL CUTOFF, RESEARCHER FINDS
Attacker’s dashboard with location from the Find Hub network. (KU Leuven)
Why many Fast Pair devices may stay vulnerable
There is another problem most users never consider. Headphones and speakers require firmware updates. Those updates usually arrive through brand-specific apps that many people never install. If you never download the app, you never see the update. That means vulnerable devices could remain exposed for months or even years.
The only way to fix this vulnerability is by installing a software update issued by the device manufacturer. While many companies have released patches, updates may not yet be available for every affected model. Users should check directly with the manufacturer to confirm whether a security update exists for their specific device.
Why convenience keeps creating security gaps
Bluetooth itself was not the problem. The flaw lives in the convenience layer built on top of it. Fast Pair prioritized speed over strict ownership enforcement. Researchers argue that pairing should require cryptographic proof of ownership. Without it, convenience features become attack surfaces. Security and ease of use do not have to conflict. But they must be designed together.
Google responds to the Fast Pair WhisperPair security flaws
Google says it has been working with researchers to address the WhisperPair vulnerabilities and began sending recommended patches to headphone manufacturers in early September. Google also confirmed that its own Pixel headphones are now patched.
In a statement to CyberGuy, a Google spokesperson said, “We appreciate collaborating with security researchers through our Vulnerability Rewards Program, which helps keep our users safe. We worked with these researchers to fix these vulnerabilities, and we have not seen evidence of any exploitation outside of this report’s lab setting. As a best security practice, we recommend users check their headphones for the latest firmware updates. We are constantly evaluating and enhancing Fast Pair and Find Hub security.”
Google says the core issue stemmed from some accessory makers not fully following the Fast Pair specification. That specification requires accessories to accept pairing requests only when a user has intentionally placed the device into pairing mode. According to Google, failures to enforce that rule contributed to the audio and microphone risks identified by the researchers.
To reduce the risk going forward, Google says it updated its Fast Pair Validator and certification requirements to explicitly test whether devices properly enforce pairing mode checks. Google also says it provided accessory partners with fixes intended to fully resolve all related issues once applied.
On the location tracking side, Google says it rolled out a server-side fix that prevents accessories from being silently enrolled into the Find Hub network if they have never been paired with an Android device. According to the company, this change addresses the Find Hub tracking risk in that specific scenario across all devices, including Google’s own accessories.
Researchers, however, have raised questions about how quickly patches reach users and how much visibility Google has into real-world abuse that does not involve Google hardware. They also argue that weaknesses in certification allowed flawed implementations to reach the market at scale, suggesting broader systemic issues.
For now, both Google and the researchers agree on one key point. Users must install manufacturer firmware updates to be protected, and availability may vary by device and brand.
SMART HOME HACKING FEARS: WHAT’S REAL AND WHAT’S HYPE
Unwanted tracking notification showing the victim’s own device. (KU Leuven)
How to reduce your risk right now
You cannot disable Fast Pair entirely, but you can lower your exposure.
1) Check if your device is affected
If you use a Bluetooth accessory that supports Google Fast Pair, including wireless earbuds, headphones or speakers, you may be affected. The researchers created a public lookup tool that lets you search for your specific device model and see whether it is vulnerable. Checking your device is a simple first step before deciding what actions to take. Visit whisperpair.eu/vulnerable-devices to see if your device is on the list.
2) Update your audio devices
Install the official app from your headphone or speaker manufacturer. Check for firmware updates and apply them promptly.
3) Avoid pairing in public places
Pair new devices in private spaces. Avoid pairing in airports, cafés or gyms where strangers are nearby.
4) Factory reset if something feels off
Unexpected audio interruptions, strange sounds or dropped connections are warning signs. A factory reset can remove unauthorized pairings, but it does not fix the underlying vulnerability. A firmware update is still required.
5) Turn off Bluetooth when not needed
Bluetooth only needs to be on during active use. Turning off Bluetooth when not in use limits exposure, but it does not eliminate the underlying risk if the device remains unpatched.
6) Reset secondhand devices
Always factory reset used headphones or speakers before pairing them. This removes hidden links and account associations.
7) Take tracking alerts seriously
Investigate Find Hub or Apple tracking alerts, even if they appear to reference your own device.
8) Keep your phone updated
Install operating system updates promptly. Platform patches can block exploit paths even when accessories lag behind.
Kurt’s key takeaways
WhisperPair shows how small shortcuts can lead to large privacy failures. Headphones feel harmless. Yet, they contain microphones, radios and software that need care and updates. Ignoring them leaves a blind spot that attackers are happy to exploit. Staying secure now means paying attention to the devices you once took for granted.
Should companies be allowed to prioritize fast pairing over cryptographic proof of device ownership? Let us know by writing to us at Cyberguy.com
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts, and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide — free when you join my CYBERGUY.COM newsletter.
Copyright 2026 CyberGuy.com. All rights reserved.
Technology
Sony’s PlayStation disc factory is already being repurposed
The video game disc is dead, and Sony’s been planning to kill it for some time, according to a report out of Austria. The man who leads Sony’s discmaking operations, Sony DADC president Dietmar Tanzer, told ORF Salzburg that the company’s Thalgau plant produces 600,000 discs every day, half of which are for PlayStation. But since it’ll only be making 10 percent of that volume in 2028, it’s planning to retrain all 300 employees to work on optical microlenses instead.
Thalgau isn’t just one of Sony’s disc plants. It’s where the disc-making division is headquartered, and appears to be its only remaining wholly owned disc manufacturing facility. Sony made discs in the United States for decades, originally in Terre Haute, Indiana and later in New Jersey, but it closed the latter plant in 2011 and moved all manufacturing from Indiana to Thalgau in 2022. Today, the Indiana facility markets itself to automakers who need help packaging and assembling headlights and the like instead.
This transition didn’t happen overnight. A behind-the-scenes video from December 2024 shows that the Thalgau plant was already working on microlenses as of then:
Those lenses, too, are created using discs:
ORF Salzburg writes that Sony has now invested €30 million to manufacture these microlenses, and that mass production may begin “as early as next year.”
Microlenses are theoretically used in all kinds of emerging applications where you might want to bend light, including headsets, but it appears that Sony may cater to automakers here, too. The head of Sony’s micro optics division gave ORF Salzburg the example of “a car turn signal that is projected onto asphalt.”
All of this is to say: Sony didn’t make this decision in a hurry, and it isn’t likely to change its mind despite the predictable backlash. It’s been winding down disc manufacturing for decades, and it’s ripping off one last band-aid with PlayStation.
According to Sony DADC’s website, it has produced over 26.4 billion discs to date — the vast majority, 23 billion of them, were made between 1983 and 2022 in Terre Haute, Indiana.
Technology
New sodium-ion battery could reshape grid storage
This is how light can be used to transmit data
At Coherent’s Sherman, Texas facility, CEO Jim Anderson and NVIDIA CEO Jensen Huang detail how their plant is at the forefront of AI innovation. They describe using light to efficiently transmit data for AI data centers, explaining the technology to Will Cain. Coherent is set to quadruple its output by next year, demonstrating rapid growth.
NEWYou can now listen to Fox News articles!
A new sodium-ion battery from Chinese battery giant CATL could eventually affect something much closer to home: the power grid that keeps your lights on. CATL has introduced its TENER Sodium Energy Storage System. The company says it is the world’s first field-validated sodium-ion energy storage system ready for commercial use.
Think big energy project, not phone upgrade. This battery is built for large storage sites that can support the grid. That kind of storage is getting more attention as electricity demand rises. AI data centers use a lot of power. Heat waves can strain local grids. Solar and wind power also need storage so electricity is available when people need it.
However, CATL has not announced a specific U.S. launch for this system. So, this is more about where grid storage may be headed than what your local utility will install tomorrow.
FOX NEWS POLL: VOTERS SEE AI REGULATION AS URGENT, RANK SAFEGUARDS AHEAD OF INNOVATION
CATL unveiled its TENER Sodium Energy Storage System in Munich as sodium-ion batteries move closer to commercial grid storage. (CATL)
Sign up for my FREE CyberGuy Report
- Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
- For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
- Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.
New sodium-ion battery targets grid storage
CATL just launched the TENER Sodium Energy Storage System in Munich, Germany. The company says cumulative shipments should reach 1 gigawatt-hour by the end of 2026. Deliveries in China are expected to start in September 2026. Global deliveries are scheduled to begin in June 2027.
That timeline shows sodium-ion batteries are moving closer to commercial use. The system is designed for stationary storage. In other words, it could help store electricity from solar farms, wind projects or other power sources for later use.
That becomes important when demand jumps during hot afternoons or renewable power drops later in the day.
Sodium-ion battery storage could ease lithium pressure
Most large battery storage projects today use lithium-based systems. Lithium works well, but supply chains can be tight. Prices can also move when demand climbs. CATL says sodium is more than 1,000 times more common than lithium. The company also says sodium is widely distributed around the world.
That could make sodium-ion batteries attractive for grid storage. These batteries do not need to be tiny enough for a phone or light enough for an electric car.
CATL isn’t saying sodium will replace lithium overnight. Instead, the company says sodium and lithium could work together in future energy storage systems.
For you, the larger point is choice. More battery options could help energy companies reduce their dependence on a single material.
AI BOOM: DEMAND FOR DATA CENTERS DRIVES INNOVATION BY ENERGY, TECH INDUSTRIES TO PRODUCE NEW POWER SOURCES
CATL says the battery fits existing systems
One of CATL’s bigger claims is that TENER Sodium can fit into existing lithium iron phosphate energy storage platforms. CATL says the system shares the same physical footprint as LFP systems. That could help developers avoid changing enclosures, redesigning projects or repeating certification steps.
The system delivers more than 30 megawatt-hours of rated capacity. CATL says each module weighs about 42 metric tons, or about 46 U.S. tons. The company says only 34 units are needed for a 1-gigawatt-hour storage site. The modular design also supports flexible storage durations of 1, 2, 4, 6 and 8 hours. That gives developers more room to tailor projects based on local power needs.
Sodium-ion battery design can handle tough conditions
The TENER Sodium system is built for large energy projects, not home use, with modules designed to store power for the grid. (CATL)
Battery storage has to work in places that get brutally hot or freezing cold. CATL says TENER Sodium is designed for better extreme-temperature performance, enhanced safety and lower operating costs. The company also says its battery management system gives the sodium-ion system an additional 20 percent safety margin compared with lithium-ion batteries.
The system also uses a top-discharge airflow design that CATL says reduces heat generation by nearly 30 percent compared with conventional systems. CATL says auxiliary power consumption drops from the industry average of 2 percent to 1 percent.
That could be useful for large grid storage projects, especially in places where heat, storms or heavy power demand can strain local systems. CATL also says TENER Sodium operates at only 65 decibels, which is 10 decibels lower than conventional systems. That could help address local concerns when battery storage sites are built closer to where power is needed.
Sodium-ion battery shipments signal commercial momentum
CATL says TENER Sodium has reached full commercial maturity across technology, production capacity and supply chain readiness. The company says it has worked on sodium-ion battery research and development since 2016. CATL also says it has invested about $1.4 billion, depending on exchange rates, over the past decade.
CATL has expanded sodium-ion production lines at its Fuding base in China. The company says that adds 40 gigawatt-hours of annual capacity. Another planned base in Jining, Shandong, could support 160 gigawatt-hours of sodium-ion battery production capacity. CATL also says it signed a three-year, 60-gigawatt-hour sodium-ion energy storage order with HyperStrong in April 2026. The company described it as the world’s largest sodium-ion commercial contract.
Those numbers show CATL is treating sodium-ion storage as a serious commercial product. That said, U.S. adoption is a separate question. American utilities, regulators and developers would still need to weigh cost, performance, supply chain risk and security concerns.
What this means to you
This sodium-ion battery system may never be something you buy directly. However, the technology behind it could still affect how electricity gets stored and delivered. If sodium-ion storage proves reliable, it could give energy companies another way to support the grid. That may become more important as AI data centers increase electricity demand.
Better storage can help utilities use power more efficiently. It can also help balance supply when demand rises quickly. Still, there are limits. A new battery chemistry will not fix old transmission lines, slow permitting or local grid bottlenecks by itself.
The real takeaway is that sodium-ion batteries could become part of the grid storage mix. They are not a magic fix, but they could help energy companies build more flexible storage projects.
Watch the CyberGuy Live replay: Lock Down Your Phone in 30 Minutes
Your phone holds your email, passwords, photos, banking apps and personal data. In this free CyberGuy Live replay, Kurt the CyberGuy walks you step by step through simple phone security fixes you can do at your own pace. You’ll learn how to improve your privacy settings, spot the latest phone scams, use trusted security tools and walk away with a simple checklist to stay protected. Watch the replay and get our checklist here: CyberGuyLive.com.
Kurt’s key takeaways
CATL’s new sodium-ion battery may sound like a faraway energy story, especially since there is no announced U.S. rollout yet. Still, it is important because the grid is under growing pressure from AI data centers, extreme weather and the need to store more renewable power. What stands out is the use of sodium, which CATL says is far more common than lithium. If this technology proves reliable in major energy projects, it could give utilities another way to store power and keep the grid steadier when demand spikes.
Would you be comfortable with Chinese-made battery systems supporting part of the U.S. electric grid if they helped make power more reliable? Let us know by writing to us at CyberGuy.com.
CATL says sodium is far more common than lithium, which could give energy companies another storage option as electricity demand rises. (CATL)
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
- Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox.
- For simple, real-world ways to spot scams early and stay protected, visit CyberGuy.com – trusted by millions who watch CyberGuy on TV daily.
- Plus, you’ll get instant access to my Ultimate Scam Survival Guide free when you join.
Copyright 2026 CyberGuy.com. All rights reserved.
Technology
Tesla driver faces manslaughter charges over Texas crash that killed a woman inside her home
On the video, I saw BUTLER’s Tesla continue to increase in speed, and saw the amount of pressure being applied to the accelerator pedal also increase in speed. In about six (6) seconds, the accelerator pedal was pressed all the way down to 100%, “pedal to the metal,” and the vehicle reached a speed of 73 miles per hour, more than double the speed limit on that residential street. The Tesla continued straight towards the middle of the cul-de-sac, struck the curb of the complainant’s driveway, and went airborne towards the front of the home… I noted that the brake pedal was never pressed in the final minute before the crash.”
-
Videos24 minutes agoIran gets ready for Khamenei’s funeral • FRANCE 24 English
-
Los Angeles, Ca36 minutes ago2 arrested after 3 LASD deputies injured during East L.A. World Cup celebration
-
Detroit, MI54 minutes agoEx-girlfriend in custody after Taylor man found fatally stabbed, police say
-
San Francisco, CA1 hour agoMarina braces for Golden Gate Bridge fireworks show, massive crowds
-
Dallas, TX1 hour agoMaradona’s ‘Hand of God’ ball heads to auction in Dallas
-
Miami, FL1 hour agoMiami-Dade sheriff urges residents to celebrate Fourth of July safely
-
Boston, MA1 hour agoJaylen Brown says Celtics showed ‘lack of respect’ after trade to 76ers – The Boston Globe
-
Denver, CO1 hour agoWho are the Top 5 offensive linemen in Denver Broncos history?