TechFlow, April 16 — According to Protos, a critical security vulnerability (CVE-2025-27840) has been discovered in the ESP32 microcontroller chip widely used in IoT devices, potentially exposing Bitcoin to theft risks. The flaw affects hardware wallet products including the Blockstream Jade.
Crypto Deep Tech, a security research firm, has confirmed that the vulnerability could be exploited to forge transaction signatures or remotely steal private keys. Researchers successfully decrypted the private key of a real wallet containing 10 BTC during experiments. Given that ESP32 chips have been deployed in billions of IoT devices worldwide, this security issue has drawn significant attention from cybersecurity professionals. White-hat hackers have flagged this vulnerability as a potential threat capable of being leveraged in nation-state attacks.




