AirPlay Security Flaws Put Over One Billion iPhone Users at Risk

Prime Highlights

Over 1.8 billion iPhone users could be affected as a result of a fresh batch of security flaws called “Airborne” that take advantage of Apple AirPlay.
While Apple has issued patches for its own units, most third-party AirPlay products remain unprotected.

Key Facts

Security firm Oligo Security discovered 23 AirPlay vulnerabilities that enable hackers to take control of devices connected to public Wi-Fi networks.
Apple has since fixed its software, but the flaw remains on unpatched third-party systems.

Key Background

A chilling cyber alert has been issued to more than one billion iPhone users after Tel Aviv-based researchers at Oligo Security found severe flaws in Apple’s AirPlay technology. The vulnerability, which has been given code names “Airborne,” exposed users to attack if their device shares the same Wi-Fi network as an attacker. AirPlay, which allows wireless streaming of content from Apple devices to compatible smart speakers or TVs, now presents a potential point of entry for cybercriminals.

The 23 weaknesses identified allow the hacker to seize devices by injecting malignant code or taking over the communication stream, the final effect of eavesdropping, theft, or getting unauthorised control. Note that the vulnerabilities require the user to click suspect links or run malware-ridden programs to effect. Sharing a network may suffice to be targeted.

While Apple was quick to release patches for its Macs, iPads, and iPhones to limit the damage, nearly all other third-party AirPlay gadgets had yet to be updated. Smart TVs, streaming media devices, and speakers are typical gadgets that are not being updated frequently with firmware updates and are therefore usual security threats. According to Oligo’s Chief Technology Officer Gal Elbaz, some of these compromised devices would never be fixed, which prolonged the attack cycle.

Apple also is getting its opportunity to work together with third-party vendors to provide software updates, but the users are on guard. Switching AirPlay off when not needed, not using public Wi-Fi networks, and keeping devices updated with new software are some suggestions to stay safe.

In another attempt to increase apprehension, Apple recently also issued a warning regarding the use of Google Chrome on iPhones and said that it still uses tracking cookies. It recommends usage of Safari to maintain privacy even more safely, part of its greater focus on protecting user data.