Urgent warning issued to iPhone users to turn off AirPlay
Share this @internewscast.com

Apple’s AirPlay feature is beloved by many users — but it can leave you vulnerable to hackers.

Experts at the cybersecurity company Oligo identified significant security vulnerabilities in Apple AirPlay, which enable attackers to take control of connected devices sharing the same Wi-Fi network.

AirPlay is a feature that lets users effortlessly stream audio, video, or images from one Apple device to another, or to non-Apple devices that support the protocol.

According to Wired, these 23 security issues, collectively called “AirBorne,” were discovered in both Apple’s AirPlay protocol and the AirPlay Software Development Kit (SDK) utilized by third-party manufacturers to ensure their devices are compatible with AirPlay.

Researchers demonstrated in a video how vulnerabilities can be exposed to hackers by accessing an AirPlay-enabled Bose speaker on the same network and remotely executing a Remote Code Execution (RCE) attack, showing the “AirBorne” logo on the speaker’s display.

They claimed that hackers realistically can use a similar strategy to gain access to devices with microphones for espionage.

Oligo CTO Gal Elbaz told Wired that the total number of exposed devices could potentially be in the millions.

“Because AirPlay is supported in such a wide variety of devices, there are a lot that will take years to patch — or they will never be patched,” Elbaz explained. “And it’s all because of vulnerabilities in one piece of software that affects everything.”


Dangerous Hooded Hacker Breaks into Government Data Servers and Infects Their System with a  Virus. His Hideout Place has Dark Atmosphere, Multiple Displays, Cables Everywhere.
Oligo CTO Gal Elbaz told Wired that the total number of exposed devices could potentially be in the millions. Gorodenkoff – stock.adobe.com

The risks were reported to Apple in the late fall and winter of last year, and Oligo worked with the tech giant for months on fixes before publishing their findings Tuesday.

Apple devices with iOS 18.4, iPadOS 18.4, macOS Ventura 13.7.5, macOS Sonoma 14.7.5, macOS Sequoia 15.4 and visionOS 2.4 had fixes rolled out on March 31.

However, third-party devices that support AirPlay protocol remain vulnerable. The researchers said that manufacturers would need to roll out updates for users to install themselves in order to avoid being exposed to hackers.


Koh Samui, Thailand - March 26, 2018: Man hand holding iPhone X with home screen Control Center. iPhone 10 was created and developed by the Apple inc.
AirPlay allows users to seamlessly stream audio, video or photos from their Apple device to another device. DenPhoto – stock.adobe.com

Apple told Wired that it created patches available for these third-party devices, but it emphasized that there are “limitations” to the attacks that would be possible on AirPlay-enabled devices due to the bugs.

CarPlay-equipped systems are also at risk, the researchers noted, since hackers can carry out an RCE attack if they are near the unit and “the device has a default, predictable, or known Wi-Fi hotspot password.”

According to the report, there are several ways to help protect your device from the threat of hackers:

  • ‍Update your devices: Researchers stressed that devices and other machines that support AirPlay need to be updated immediately to the latest software versions to mitigate potential security risks.
  • Disable AirPlay Receiver: Oligo recommends fully disabling the AirPlay feature when not in use.
  • Only AirPlay to trusted devices: Limit AirPlay communication and stream content to only trusted devices.
  • Restrict AirPlay Settings: Go to Settings > AirPlay & Continuity (or AirPlay & Handoff) and select Current User for the “Allow AirPlay for” option. “While this does not prevent all of the issues mentioned in the report, it does reduce the protocol’s attack surface,” researchers noted.
  • Disable on public Wi-Fi: It’s best to avoid enabling or using AirPlay when on a public Wi-Fi network.

Share this @internewscast.com
You May Also Like
Florida set to execute man for killing wife, 2 kids in new state death sentence record for 1 year

Florida to Break Record with Execution of Man Convicted of Killing Wife and Two Children

STARKE, Fla. (AP) — A man in Florida, found guilty of murdering…
Selfie of Ivana Smit in a white lace top.

Investigation Begins into Death of 18-Year-Old Model Who Fell 200ft After Incident with Bitcoin Tycoon and Wife

A murder investigation has been initiated following the death of a teenage…
Sister of murdered Bradford County father speaks on preventable tragedy

Sister Speaks Out on Avoidable Tragedy of Bradford County Father’s Death

Christopher Jones’ family urges awareness about domestic violence after his shooting by…
Jared Bridegan's wrongful death lawsuit put on pause

Jared Bridegan’s Wrongful Death Case Temporarily Halted

Shanna Gardner, charged with Bridegan’s 2022 death, was mired in a longtime…
Virginia city councilman doused with gasoline and set on fire in horrific workplace attack, suspect arrested

Virginia Councilman Set Ablaze in Workplace Attack; Suspect in Custody

A member of the city council in Virginia was urgently taken to…
40 arrested in online child sting operation in Marion County

Marion County sting operation leads to 40 arrests for online child exploitation

The men were arrested for messages they sent to undercover officers pretending…
Chicago shooting: Man shot, critically injured while driving on North Kimball Avenue in Avondale, crashes into home, police say

Chicago Incident: Man in Critical Condition after Being Shot While Driving on North Kimball Avenue in Avondale, Leading to a Crash into a Home, According to Police

CHICAGO (WLS) — A man was shot and critically injured Wednesday while…
The reason behind Kris Jenner and Corey Gamble's public fights

Why Kris Jenner and Corey Gamble Argue in Public

Kris Jenner and Corey Gamble are well past the honeymoon stage. The…
NTSB finds Army chopper in fatal midair crash with American Airlines plane was above altitude limit

Second Day of Federal Investigation Into Deadly Midair Collision Between Army Helicopter and American Airlines Jet Begins

The National Transportation Safety Board (NTSB) is conducting a second day of…
Navy calls off search for missing sailor assigned to USS George Washington near Australia

Navy Ends Search for Sailor from USS George Washington Missing Near Australia

The U.S. Navy has ended the search for a sailor from the…
Couple killed at Arkansas' Devil's Den State Park 'died heroes protecting their little girls,' family says

Arkansas Man Faces Capital Murder Charges for Killing Parents in Front of Daughters at Devil’s Den State Park

The Arkansas Department of Public Safety announced an arrest on Wednesday connected…
Colorado dentist's alleged internet search history takes center stage as murder trial begins

Colorado Dentist James Craig Convicted of Poisoning Wife to Death

This narrative touches upon suicide. If you or someone you know is…