Apple AirPlay errors leave millions of devices at risk

AirPlay safety errors, Apple protocol for wireless sound transmission, photos and videos, other malicious operations, as well as the distribution of malicious software and users to use, Performing millions of brand devices and third partiesAccording to Oligo Security. Details of the case were published on Tuesday 29.

For third parties called “Airbone ,, 23 Security Vulnerability Sets are defined in the Software Development Kit (SDK). As a result, a wide range of devices made by other companies, including smart speakers, smart TV, box TV and code solvents, can be affected.

https://www.youtube.com/watch?v=zmovrlbl3ys

Cyber ​​Security Company warned that these gaps affect Carplay, a platform that enables you to integrate the iPhone into the multimedia system of the car. Well, Automobile models that are compatible with the standard also enter the vulnerable list.

What does AirPlay failures allow you to do?

When used, these security vulnerabilities in AirPlay allow various attacks such as remote code execution, file reading and theft of confidential information in certain cases. The denial attacks of the services (DOS) are another possibility.

Cyber ​​criminals can do actions like the following:

• Install malicious programs on iPhones, iPads and Macs;
• Access to precision data;
• To reproduce images and/or unwanted sounds on third -party devices;
• Invasion of the multimedia center of the vehicles with Carplay;
• Suppose the device control and add them to botnets;
• In a more severe and not fully proven scenario, access smart speaker microphones and use them for espionage.
• Learn more: Microsoft corrects the 6 ‘day zero’ flaws discovered by criminals in Windows; Update

For the realization of these and other actions The attacker needs to be connected to the same Wi-Fi network as the vulnerable device.As explained by researchers responsible for discovery, it limited access to attacks. In the case of cars, cyber guilty mobile phone must match the center via Bluetooth or USB.

Despite these limitations, Airbone security deficits pose higher risks for those who use public Wi-Fi networks. Like those presented in shopping centers, airports, hotels, restaurants and cafes. In such cases, it will be easier to use the invader’s same connection and attack unprotected devices.

What to do to protect me?

Apple claims that it has started security patches to correct the gaps on AirPlay in the last few months, and this comes with iOS, iPados and MacOS updates. For third parties and Carplay AirPlay SDK packages have also been presented.

By keeping your iPhone and other Apple devices up to date, you protect yourself from possible invasions about Airbone. Already AirPlay -Shitable third -party devices can be exposed to a longer time with the Cupertino giant, which provides correction because the update is connected to the manufacturer.

It is also important to reduce risks When not used, disable AirPlay and be careful when connecting to general networks.. Keeping the router up -to -date and maintaining the home network with a strong password is other useful applications.

Do you have more clues to protect yourself from attacks like those quoted in the text? Share with us by commenting on Tecmundo’s social networks.