Google Fast Pair Flaw Exposes Hundreds Of Millions Of Bluetooth Devices To WhisperPair Exploit, Patch ASAP

Users of Bluetooth accessories beware—a vulnerability was found in the commonly-used Google Fast Pair standard in August of 2025, and an active exploit dubbed WhisperPair is out in the wild. The WhisperPair exploit allows for attackers to track and pair with victim's devices, and once paired, an attacker can listen to and record private conversations at will, or play back invasive audio on a whim. Fortunately, public disclosure of the attack is very recent, with Google and partners having been notified back in August of last year, That means your Bluetooth audio devices may already have updates available that effectively patch this issue, but you're advised to check for those firmware updates ASAP.

Since the vulnerability is targeted to specific Bluetooth accessories and not smartphone OSes, both Android and iOS users are vulnerable regardless of their phone's Fast Pair settings. All that's needed is an ...