Gaming soundbar can be hijacked from over 16 yards away without touch or pairing — the company allegedly refuses to label the blatant security flaw a cybersecurity risk
A security researcher has discovered a vulnerability in Creative's Sound Blaster Katana V2X gaming soundbar that allows it to be hijacked remotely via Bluetooth. The flaw enables an attacker within approximately 16 yards to flash custom firmware onto the device without any pairing or physical interaction. This custom firmware can then turn the soundbar into a keyboard, allowing it to inject commands into a connected PC. Creative has reportedly refused to classify this as a cybersecurity risk, leaving users without an official patch. AI
IMPACT This vulnerability highlights potential security risks in connected consumer electronics, underscoring the need for robust security practices in product development.