Apple’s Airplay feature is loved by many users – but can leave you vulnerable to hackers.
Researchers at the Internet Security Firm Oligo found major security flaws at Airplay Apple that allow hackers to grab compliant equipment on the same Wi-Fi network.
Airplay allows users to transmit audio, video or photo of their Apple device smoothly to another Apple device or third -party tools that integrate the protocol.
23 The weaknesses, called “Airborne”, were found in both Apple’s Airplay Protocol and Airplay Software Development Complete used by third -party sellers to make Airplay devices compatible, Wired reported.
Researchers demonstrated in a video on how weaknesses can be exposed to hackers by entering a speaker activated with Airplay on the same network and executing from a distance a remote code execution attack (RCE), showing the “Airborne” logo on the speaker’s screen.
They claimed that hackers can actually use a similar strategy to gain access to microphones for espionage.
Oligo Cto Gal Elbaz told Wired that the total number of equipment exposed can be potentially in millions.
“Because Airplay is based on such a wide variety of equipment, there are many that will take years to accumulate – or they will never accumulate,” Elbaz explained. “And everything is because of the weaknesses in a piece of software that touches everything.”
The risks were reported on Apple in late autumn and winter last year, and Oligo worked with the technology giant for months in adjustments before publishing their findings on Tuesday.
Apple Equipment with IOS 18.4, iPados 18.4, Macos Ventura 13.7.5, Macos Sonoma 14.7.5, Macos Sequoia 15.4 and Visionos 2.4 had adjustments wrapped on March 31.
However, third -party equipment that supports Airplay protocol remain tangible. Researchers said manufacturers would need to encourage updates for users to install themselves in order to avoid exposure to hackers.
Apple told Wired it created patches available for these third -party devices, but stressed that there are “restrictions” for attacks that would be possible on plane activated devices due to errors.
Carplay-equipped systems are also in danger, researchers noted, as hackers can perform an RCE attack if they are close to the unit and “the device has a predictable, predictable or well-known Wi-Fi password.”
According to the report, there are several ways to help protect your device from hacker threat:
- Update your equipment: The researchers noted that the equipment and other airplay supporting machines should be immediately updated in the latest software versions to mitigate potential safety risks.
- Disable air receiver: Oligo fully recommends the inability of the Airplay feature when not in use.
- Only Airplay for trusted equipment: Limit air communication and transmission content only to trusted equipment.
- Limit air settings: Go to Settings> Airplay & Continuity (or Airplay & Avoff) and select the current user for the “Allow Airplay for” option. “While this does not prevent all the issues mentioned in the report, it reduces the surface of the protocol attack,” the researchers noted.
- Deactivate for public Wi-Fi: It is best to avoid the possibility or use of Airplay when you are on a Wi-Fi public network.
#Urgent #warning #iPhone #users #turn #popular #function #steps #security
Image Source : nypost.com