Apple fixes a Beats Studio Buds flaw that could let hackers listen to conversations
Apple has fixed a frightening security flaw that would let hackers listen to conversations and discover call histories.
In its most recent firmware update for Beats headphones, 1B211, Apple fixed a terrifying security flaw that allowed malicious actors to potentially eavesdrop on private conversations within Bluetooth range of the brand's popular Studio Buds. According to reporting by Sead Fadilpašić of TechRadar, it was actually the third-party security firm ERNW and its researchers, Dennis Heinze and Frieder Steinmetz, who first discovered the vulnerability, all the way back in 2025, when it was assigned an 8.8/10 severity score.
In effect, it allowed hackers to impersonate a device that had previously been connected to the headphones, not only granting them access to the microphone and headphone audio but eventually even learning some devices' call histories and contact lists.If you own a pair of Studio Buds, is it likely you've been targeted? Thankfully, no.
The same researchers who discovered the exploit told TechRadar that the degree of coordination, complexity, and planning required to execute this hack would have made it worthwhile only for very high-value targets, and, as of now, there are no reports of anyone being negatively impacted by the security vulnerability. It's also worth mentioning that Apple wasn't the only company caught up in this exploit. In the original report released by ERNW that identified the flaw, the security firm listed dozens of compromised devices, including those from manufacturers like Sony, JBL, and Bose, and those were just the brands that publicly listed their system suppliers, leaving potentially hundreds more devices yet to be named.
In the words of the security researchers in the report, the unknown scope of the problem "creates a huge blind spot in vulnerability management due to the nature of the supply chain." Thankfully, Apple isn't the only company taking active measures to protect its customers. According to Ecoustics reporting back in January, both Bose and JBL have also taken steps to close off the vulnerability through firmware updat
Đọc thêm từ Công nghệ
Apple @ Work: The era of legacy MDM is over, and declarative management is the new standard
Apple @ Work is exclusively brought to you by Mosyle, the only Apple Unified Platform. Mosyle is the only solution that integrates in a single professional grade platform all the solutions necessary to seamlessly and automatically deploy, manage, and protect Apple devices at work
In the Weights is your new AI-centric vanity search
So ... what's your In the Weights score?
Ubisoft co-founder Claude Guillemot dies in plane crash in France
Claude Guillemot, who co-founded French video-game publisher Ubisoft with his brothers in 1986, has died, the company said on Saturday. “Ubisoft was deeply saddened to learn of the death of Claude Guillemot, co-founder of the group and chairman of Guillemot Corp, in an accide
Indie App Spotlight: ‘Brink’ brings a feature-rich experience to iPhone podcast listening
Welcome to Indie App Spotlight. This is a weekly 9to5Mac series where we showcase the latest apps in the indie app world. If you’re a developer and would like your app featured, get in contact. If you’re looking to level up your podcast experience, check out Brink. It’s a well ma