The revamp of this classic Christmas toy has a serious Bluetooth security flaw

Chatter phone
(Image credit: Best Buy)

Older readers will probably remember the Fisher-Price Chatter phone, a classic toy that almost always sells out during the holiday season. This year, however, buyers might get a little more than what they paid for - if not too much.

As reported by TechCrunch, the newly "smart" edition of the Chatter phone came with a modern twist - the device is essentially a Bluetooth speaker, with a built-in microphone (and the essential wobbly eyes).

That way, parents can hook it up to their mobile phones via Bluetooth, and chat away with their young ones for guaranteed hilarity.

But the problem is - there’s no secure pairing process. According to TechCrunch, anyone close enough can quite easily connect to the Chatter phone. As a result, Chatter can end up broadcasting audio from nearby smartphones and pick up on calls pretty much instantly.

Investigating the claims

In a statement, the device’s manufacturer Mattel said the phone, “will time out if no connection is made or once the pairing occurs — it is only discoverable within a narrow window of time and requires physical access to the device.” 

However, in TechCrunch’s tests, the connection did not time out even after an hour. Mattel also said it was “committed to security” and that it would be “investigating” the claims.

Ken Munro, founder of the cybersecurity company Pen Test Partners, who also tested the device, said the flaw could be leveraged by malicious actors or neighbors.

“It doesn’t need kids to interact with it in order for it to become an audio bug. Just leaving the handset off is enough,” said Munro.

The first Chatter phone was released some 60 years ago, and while the old (Bluetooth-less) toys cost around $7, the new one will set you back $60. The device is battery-powered and lasts up to nine hours on a single charge, the company claims. 

You might want to check out our list of the best endpoint protection software right now

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Bluetooth
Top Bluetooth chip security flaw could put a billion devices at risk worldwide
HMD Fusion
'The smartphone teens want, with the safety parents desire': HMD’s Fusion X1 is here to save the TikTok generation
Find My app logo displayed on an iPhone 11 screen
This Find My exploit lets hackers track any Bluetooth device – here’s how you can stay safe
Abstract image of cyber security in action.
TikTok’s American ownership rule ignores bigger IoT threat
Photograph of a hand holding a smartphone with two googly eyes
Every tap, every message – how to stop your smartphone spying on you
Voice cloning
I cloned my voice in seconds using a free AI app, and we really need to talk about speech synthesis
Latest in Pro
Epson EcoTank ET-4850 next to a TechRadar badge that reads Big Savings
I found the best printer deal you won't see in the Amazon Spring Sale and it's got a massive $150 saving
Microsoft Copiot Studio deep reasoning and agent flows
Microsoft reveals OpenAI-powered Copilot AI agents to bosot your work research and data analysis
Group of people meeting
Inflexible work policies are pushing tech workers to quit
Data leak
Top home hardware firm data leak could see millions of customers affected
Representational image depecting cybersecurity protection
Third-party security issues could be the biggest threat facing your business
An image of network security icons for a network encircling a digital blue earth.
Why multi-CDNs are going to shake up 2025
Latest in News
Nintendo Music teaser art
Nintendo Music expands its library with songs from Kirby and the Forgotten Land and Tetris
An image of Pro-Ject's Flatten it closed and opened
Pro-Ject’s new vinyl flattener will fix any warped LPs you inadvertently buy on Record Store Day
The iPhone 16 Pro on a grey background
iPhone 17 Pro tipped to get 8K video recording – but I want these 3 video features instead
EA Sports F1 25 promotional image featuring drivers Oscar Piastri, Carlos Sainz and Oliver Bearman.
F1 25 has been officially announced, with this year's entry marking a return for Braking Point and a 'significant overhaul' for My Team mode
Garmin clippd integration
Garmin's golf watches just got a big software integration upgrade to help you improve your game
Robert Downey Jr reveals himself as Doctor Doom to a delighted crowd at San Diego Comic-Con 2024
Marvel is currently revealing the full cast for Avengers: Doomsday, and I think it's going to be a long-winded announcement