Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Google Fast Pair unauthorized pairing flaw (CVE-2025-36911)

Vulnerability
First reported
Last updated
Happening score
H score 12
1 unique sources, 1 articles

Summary

Hide ▲

A CVE-2025-36911 flaw in Google Fast Pair lets attackers silently pair with vulnerable Bluetooth audio accessories, creating eavesdropping and location-tracking risk across hundreds of millions of headphones, earbuds, and speakers. The issue sits in the accessories themselves, so it can affect users on Android and iPhone alike. Google coordinated security patches with manufacturers during a 150-day disclosure window, but fixes may not yet be available for every device. The only effective defense is installing the accessory maker's firmware update.

Related Happenings

Google rolls out Android Intrusion Logging in Android Advanced Protection Mode

Security Tool/Service
First: 14.05.2026 16:30 Last: 14.05.2026 16:30 Sources 1

About this happening: Google has released **Android Intrusion Logging** for **Android Advanced Protection Mode**, giving **high-risk Android users** encrypted forensic logs to investigate suspected **s...

Open Happening

Android Intrusion Logging forensic logging rollout for spyware investigations

Security Tool/Service
First: 13.05.2026 09:55 Last: 13.05.2026 09:55 Sources 1

About this happening: **Android** is adding **Intrusion Logging**, an opt-in forensic feature in **Advanced Protection Mode** that preserves device and network activity for suspected spyware compromise...

Open Happening

IOS 26.5 beta rolls out default end-to-end encrypted RCS messaging on iPhone and Android

Security Tool/Service
First: 12.05.2026 08:18 Last: 12.05.2026 08:18 Sources 1

About this happening: Apple's **iOS 26.5** beta adds **default end-to-end encrypted RCS** messaging for **iPhone** and **Android** users, strengthening privacy in cross-platform chats. The rollout cove...

Open Happening

PromptSpy backdoor for Android with Gemini API automation

Malware Activity
First: 11.05.2026 16:02 Last: 11.05.2026 16:02 Sources 1

About this happening: The **PromptSpy** backdoor for **Android** was highlighted for using **Gemini APIs** to automate device interaction, increasing the risk of unauthorized control on infected phones...

Open Happening

Android 17 Beta 2 adds AAPM restriction on non-accessibility app use of the accessibility services API

Security Tool/Service
First: 16.03.2026 07:43 Last: 16.03.2026 07:43 Sources 1

About this happening: **Android 17 Beta 2** adds a new **Android Advanced Protection Mode (AAPM)** control that blocks non-accessibility apps from using the **accessibility services API**. The change h...

Open Happening

Timeline

  1. 15.01.2026 18:13 2 articles · 4mo ago

    CVE-2025-36911 affects Google Fast Pair Bluetooth accessories

    Initial Disclosure

    Researchers with KU Leuven's Computer Security and Industrial Cryptography group disclosed CVE-2025-36911, also called WhisperPair, a critical flaw in Google's Fast Pair protocol that can let attackers force-pair vulnerable Bluetooth audio accessories, hijack audio, eavesdrop through device microphones, and in some cases track victims through Google's Find Hub network. The issue affects hundreds of millions of wireless headphones, earbuds, and speakers from multiple manufacturers, and Google worked with device makers during a 150-day disclosure window to release security patches while firmware updates remain the only effective defense.

    Show sources
    Open in new tab