This content originally appeared on DEV Community and was authored by a.infosecflavour
On 26th of June, Apple announced CVE-2024-27867.
If you are the (happy) owner of either:
- AirPods (2nd generation and later),
- AirPods Pro (all models),
- AirPods Max,
- Powerbeats Pro,
- Beats Fit Pro
then you shall ensure your device(s)' firmware is up to date.
The good news: if your Airpods/ Beats are charging or are connected to your iPhone, iPad or Mac then the update is done automatically.
You can check the version of your AirPods/ Beats using one of the earlier specified devices. Be wary that your iPhone/ iPad/ Mac should also be at the latest version! 💡
The bad news: Your conversations were at risk of being intercepted by a curious malicious actor, using bluetooth sniffer.
What is a bluetooth sniffer?
It's a tool used to intercept and read (i.e to sniff) the Bluetooth Low Energy (also known as BLE) packets, as they are transmitted.
Bluetooth sniffing is just one type of attack. You can read more about other types of Bluetooth attacks on HTB Academy
Is the issue fixed?
Well, as mentioned earlier in the article, yes!
The issue is fixed on AirPods Firmware Update 6A326, AirPods Firmware Update 6F8, respectively Beats Firmware Update 6F8.
Instead of buh-bye
Always make sure that your devices are updated because this is a facile way to protect yourself online.
This content originally appeared on DEV Community and was authored by a.infosecflavour
a.infosecflavour | Sciencx (2024-06-30T19:47:06+00:00) CVE-2024-27867- Eavesdropping vulnerability AirPods. Retrieved from https://www.scien.cx/2024/06/30/cve-2024-27867-eavesdropping-vulnerability-airpods/
Please log in to upload a file.
There are no updates yet.
Click the Upload button above to add an update.