Refurbished iPhone 12 from $196
Pre-order the Galaxy S25 Edge now—score a 512GB free storage upgrade!
Pre-order the Galaxy S25 Edge now—score a 512GB free storage upgrade!

Millions of AirPlay-enabled devices are at risk of being attacked by "AirBorne" security threat

By
2comments
Google News Follow
Follow us on Google News
Apple iPhone
Banners to indicate that a device works streaming video and audio via Apple AirPlay.
Yesterday we told you about Apple's warnings to some iPhone users that their phones might be infected with Pegasus spyware. Besides issuing these warnings, Apple also included some tips telling iPhone users what they should do if they receive the notification from Apple stating that their iPhone might be carrying the Israeli-sourced spyware. Today, Apple is once again sending an alert to iPhone users and the subject matter is also a serious one.

A collection of 23 vulnerabilities called AirBorne has been spotted in Apple’s AirPlay protocol and software development kit (SDK). The feature allows iPhone, iPad, and Mac users to send photos, videos, and audio to compatible devices including:

  • Apple TV
  • AirPlay-enabled smart TVs (from various manufacturers)
  • AirPlay-enabled speakers
  • Macs (as receivers, on macOS Monterey and later)
  • Select hotel TVs 

The flaws can allow hackers to run malware on your iPhone, and access your personal data. For the AirBorne vulnerabilities to be exploited, the attackers need to be on the same Wi-Fi network as the victim. This includes public Wi-Fi networks found in airports, hotels, and coffee shops (think Starbucks). Even the office where you work might use a vulnerable Wi-Fi setup.

Since the vulnerability is related to Apple's AirPlay wireless streaming technology, the tech giant suggests that all devices, especially those connected to AirPlay, be updated to the latest software version ASAP. And because it can be used by hackers as a way to gain entry to your phone and take control of it, Apple also recommends that you disable AirPlay when not in use. You should also make sure that those Bluetooth speakers that you haven't touched in months or years are no longer connected to your iPhone since they can also be used as an entry point into your device by hackers.

While Apple has already pushed out updates to patch the flaws on its devices, there are millions of third-party devices that are still vulnerable if their manufacturers haven't updated them yet. Since some of these products contain microphones, they can be used as a tool for spying. A video embedded in this story shows how the flaw can be used to gain root access to a device, in this case an AirPlay-enabled Bose speaker, and send an image to it.

Recommended Stories
Video Thumbnail


Gal Elbaz, co-founder and chief technology officer of Israeli based cybersecurity firm Oligo said, "If a hacker can get on the same network as one of these devices, they can gain control and use it as a stepping stone to reach everything else." As frightening as this sounds, you can really help protect yourself by following Apple's advice. Update your devices and stay away from public Wi-Fi networks.

Oligo warned Apple about the vulnerabilities last fall and winter. In addition to pushing out the aforementioned security updates for Apple devices, the company also reportedly created patches for third-party devices.
Did you enjoy this article?
Еxplore more with a FREE members account.
  • Access members-only articles
  • Join community discussions
  • Share your own device reviews
  • Manage your newsletter choices
Register For Free
https://m-cdn.phonearena.com/images/users/39-200/Alan-F.jpg
Alan Friedman Senior News Writer
Alan, an ardent smartphone enthusiast and a veteran writer at PhoneArena since 2009, has witnessed and chronicled the transformative years of mobile technology. Owning iconic phones from the original iPhone to the iPhone 15 Pro Max, he has seen smartphones evolve into a global phenomenon. Beyond smartphones, Alan has covered the emergence of tablets, smartwatches, and smart speakers.
Read the latest from Alan Friedman
Loading Comments...

Recommended Stories

Popular stories

T-Mobile and Verizon customers thinking of leaving must choose carefully
T-Mobile and Verizon customers thinking of leaving must choose carefully
If your Pixel's battery drains too fast and overheats, you might want to delete this one app
If your Pixel's battery drains too fast and overheats, you might want to delete this one app
Google Wallet users in the US get another upgrade this week
Google Wallet users in the US get another upgrade this week
Next Tuesday's T-Mobile perks will include an impossibly awesome movie deal
Next Tuesday's T-Mobile perks will include an impossibly awesome movie deal
Xfinity customers are getting a free perk starting this weekend
Xfinity customers are getting a free perk starting this weekend
The world’s thinnest foldable now expected to arrive in June
The world’s thinnest foldable now expected to arrive in June

Latest News

Turns out Samsung had more to do with this Android 16 long-awaited feature than we thought
Turns out Samsung had more to do with this Android 16 long-awaited feature than we thought
Apple adds three more units to its list of Vintage iPhones and what this might mean to you
Apple adds three more units to its list of Vintage iPhones and what this might mean to you
iPhone 13 user shares T-Mobile Starlink experience from the middle of nowhere
iPhone 13 user shares T-Mobile Starlink experience from the middle of nowhere
Forget screens: more details emerge on the mysterious Jony Ive + OpenAI device
Forget screens: more details emerge on the mysterious Jony Ive + OpenAI device
Level up your mobile gaming with a cheaper-than-ever Lenovo Legion Tab Gen 3 powerhouse
Level up your mobile gaming with a cheaper-than-ever Lenovo Legion Tab Gen 3 powerhouse
Hands-on: The Honor 400 Pro is a flagship in disguise but the price gives it away
Hands-on: The Honor 400 Pro is a flagship in disguise but the price gives it away
FCC OKs Cingular\'s purchase of AT&T Wireless