Billions of iPhones Vulnerable to New AirPlay Malware Threat

The New York Post reported that cybersecurity experts have warned Apple users to immediately update their devices after researchers discovered a critical vulnerability in the AirPlay system of the company. This flaw could allow hackers access to private data, to deploy malware, and to even listen to conversations.

Researchers say that a newly discovered vulnerability called “Airborne” puts millions of Apple users in danger. The flaw allows hackers to access devices connected to the Wi-Fi network, including those in public places such as airports and cafes.

Apple’s AirPlay protocol and its software development kit (SDK) are commonly used to wirelessly stream media between devices. The flaw, according to experts, could allow hackers backdoor access into various gadgets, including iPhones and smart TVs.

In an interview with Wired, Gal Elbaz said that because AirPlay is supported by so many devices, it will take years for them to be fixed. Or they may never be fixed. “And all of this is because of vulnerabilities that are present in a single piece of software.”

Researchers found 23 bugs in AirPlay, many of which could affect devices that users are not actively using. Attackers can use Bluetooth speakers and outdated set-top boxes still connected to the internet as gateways.

Elbaz cautioned, “If a hacker can get onto the same network with one of these devices, he can gain control over it and use it as a stepping stone for everything else.”

Apple has released security updates for its devices. Users are encouraged to download the software as soon as possible. Many third-party manufacturers who use AirPlay have not yet released updates for their devices. This delay, according to experts, could have serious implications.

Patrick Wardle is the CEO of DoubleYou, a security company that focuses on Apple. He said, “When third-party vendors integrate Apple technologies such as AirPlay via SDK, Apple no longer controls the hardware or patching process. If third-party vendors are slow to update or completely skip the updates, it can leave users vulnerable and undermine consumer confidence in Apple’s entire ecosystem.”

Apple users should update their iPhones, iPads, and other Apple devices to stay protected. They can also disable AirPlay if they are not using it. This could block one of the most common access points that hackers use.

Experts say that, while Apple has taken measures to fix the vulnerabilities within its ecosystem, the greater risk is the extent of AirPlay adoption by third-party devices.