Millions of Apple Airplay-Enabled Devices Can Be Hacked via Wi-Fi
Lily Hay Newman Andy Greenberg Apr 29, 2025 8:30 AM Researchers reveal a collection of bugs known as AirBorne that would allow any hacker on the same Wi-Fi network as a third-party AirPlay-enabled device to surreptitiously run their own code on it. Illustration:Apple's AirPlay feature enables iPhones and Macbooks to seamlessly play music or show photos and videos on other Apple devices or third-party speakers and TVs that integrate the protocol. Now newly uncovered security flaws in AirPlay mean that those same wireless connections could allow hackers to move within a network just as easily, spreading malicious code from one infected device to another. Apple products are known for regularly receiving fixes, but given how rarely some smart-home devices are patched, it's likely that these wirelessly enabled footholds for malware, across many of the hundreds of models of AirPlay-enabled devices, will persist for years to come.
On Tuesday, researchers from the cybersecurity firm Oligo revealed what they're calling AirBorne, a collection of vulnerabilities affecting AirPlay, Apple's proprietary radio-based protocol for local wireless communication. Bugs in Apple's AirPlay software development kit (SDK) for third-party devices would allow hackers to hijack gadgets like speakers, receivers, set-top boxes, or smart TVs if they're on the same Wi-Fi network as the hacker's machine. Another set of AirBorne vulnerabilities would have allowed hackers to exploit AirPlay-enabled Apple devices too, Apple told Oligo, though these bugs have been patched in updates over the last several months, and Apple tells WIRED that those bugs could have only been exploited when users changed default AirPlay settings.
Those Apple devices aside, Oligo's chief technology officer and cofounder, Gal Elbaz, estimates that potentially vulnerable third-party AirPlay-enabled devices number in the tens of millions. 'Because AirPlay is supported in such a wide variety of devices, there are a lot that will take years to patch—or they will never be patched,' Elbaz says. 'And it's all because of vulnerabilities in one piece of software that affects everything.'
Despite Oligo working with Apple for months to patch the AirBorne bugs in all affected devices, the Tel-Aviv-based security firm warns that the AirBorne vulnerabilities in many third-party gadgets are likely to remain hackable unless users act to update them. If a hacker can get onto the same Wi-Fi network as those vulnerable devices—whether by hacking into another computer on a home or corporate network or by simply connecting to the same coffeeshop or airport Wi-Fi—they can surreptitiously take over these gadgets. From there, they could use this control to maintain a stealthy point of access, hack other targets on the network, or add the machines to a botnet of infected, coordinated machines under the hacker's control.
Oligo also notes that many of the vulnerable devices have microphones and could be turned into listening devices for espionage. The researchers did not go so far as to create proof-of-concept malware for any particular target that would demonstrate that trick.
Oligo says it warned Apple about its AirBorne findings in the late fall and winter of last year, and Apple responded in the months since then by pushing out security updates. The researchers collaborated with Apple to test and validate the fixes for Macs and other Apple products.
Apple tells WIRED that it has also created patches that are available for impacted third-party devices. The company emphasizes, though, that there are limitations to the attacks that would be possible on AirPlay-enabled devices as a result of the bugs, because an attacker must be on the same Wi-Fi network as a target to exploit them. Apple adds that while there is potentially some user data on devices like TVs and speakers, it is typically very limited.
Below is a video of the Oligo researchers demonstrating their AirBorne hacking technique to take over an AirPlay-enabled Bose speaker to show their company's logo. (The researchers say they didn't intend to single out Bose, but just happened to have one of the company's speakers on hand for testing.) Bose did not immediately respond to WIRED's request for comment.
The AirBorne vulnerabilities Oligo found also affect CarPlay, the radio protocol used to connect to vehicles' dashboard interfaces. Oligo warns that this means hackers could hijack a car's automotive computer, known as its head unit, in any of more than 800 CarPlay-enabled car and truck models. In those car-specific cases, though, the AirBorne vulnerabilities could only be exploited if the hacker is able to pair their own device with the head unit via Bluetooth or a USB connection, which drastically restricts the threat of CarPlay-based vehicle hacking.
The AirPlay SDK flaws in home media devices, by contrast, may present a more practical vulnerability for hackers seeking to hide on a network, whether to install ransomware or carry out stealthy espionage, all while hiding on devices that are often forgotten by both consumers and corporate or government network defenders. 'The amount of devices that were vulnerable to these issues, that's what alarms me,' says Oligo researcher Uri Katz. 'When was the last time you updated your speaker?'
The researchers originally started thinking about this property of AirPlay, and ultimately discovered the AirBorne vulnerabilities, while working on a different project analyzing vulnerabilities that could allow an attacker to access internal services running on a target's local network from a malicious website. In that earlier research, Oligo's hackers found they could defeat the fundamental protections baked into every web browser that are meant to prevent websites from having this type of invasive access on other people's internal networks.
While playing around with their discovery, the researchers realized that one of the services they could access by exploiting the bugs without authorization on a target's systems was AirPlay. The crop of AirBorne vulnerabilities revealed today is unconnected to the previous work, but was inspired by AirPlay's properties as a service built to sit open and at the ready for new connections.
And the fact that the researchers found flaws in the AirPlay SDK means that vulnerabilities are lurking in hundreds of models of devices—and possibly more, given that some manufacturers incorporate the AirPlay SDK without notifying Apple and becoming 'certified' AirPlay devices.
'When third-party manufacturers integrate Apple technologies like AirPlay via an SDK, obviously Apple no longer has direct control over the hardware or the patching process,' says Patrick Wardle, CEO of the Apple device-focused security firm DoubleYou. 'As a result, when vulnerabilities arise and third-party vendors fail to update their products promptly—or at all—it not only puts users at risk but could also erode trust in the broader Apple ecosystem."
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
CNET
9 minutes ago
- CNET
Everything I Suspect Will Be Announced at WWDC 2025 Tomorrow
Apple's developer conference, WWDC 2025, kicks off tomorrow at 10 a.m. PT. At its last two WWDC events, Apple launched itself into new territories, jumping into both AR/VR and generative AI. There's pressure on the company to match, if not top, what it's done in the past. CNET has editors and writers attending in person to report on live WWDC 2025 developments as they break. There was the Vision Pro in 2023. Then Apple Intelligence in 2024. What big announcement is coming in 2025? With both the Vision Pro and Apple Intelligence having faced slow and heavily criticized starts, the big message at this year's WWDC doesn't seem clear at all. Apple might focus on operating system redesigns and gradual improvements across the board. WWDC is usually a showcase for Apple's future-forward ideas. It's also where the company discusses its developer tools, as you'd expect. And it's where previews of all the new OS versions are revealed, giving an early look at what's coming to the iPhone, iPad, Mac and other Apple devices. It's possible Apple will reveal a new home device -- a display-enabled HomePod -- or even a new Apple Pencil with a calligraphy mode. But the biggest rumors so far suggest a new cross-OS redesign and renaming that could be Apple's way of deflecting some attention away from not having big new AI features to show off. Now Playing: WWDC 25: Expect Big Changes to iOS, but Not Much on a Smarter Siri 05:17 OS by year: Will it be iOS 26? Recent reports from Bloomberg's often-correct Mark Gurman say Apple is going to ditch the existing numbered OS convention it's used for years and instead go with another approach to naming: labeling all annual OSes by year number. Instead of iOS 19, we'll have iOS 26. And iPadOS 26, and MacOS 26, and WatchOS 26, TVOS 26, VisionOS 26. Samsung made a similar move in 2020, jumping from the Galaxy S10 in 2019 to the Galaxy S20 in 2020. Apple's numbering has felt pretty disjointed as the numbers have gone ever-higher across multiple device categories. A yearly number would at least help people know if they're on the current version. Glass as the new look The WWDC invites, featuring a hazy transparent ring, hint at a reported redesign of all the company's software to a new "glass" look. Bloomberg's Gurman reported on a large incoming cross-OS design shift, calling it a dramatic redesign and one of the biggest Apple's done in years. The design may mirror the Vision Pro's VisionOS feel, which has lots of frosted glass panes, layers of transparency and circular app icons. Front Page Tech's Jon Prosser showed a preview of the expected design based on information from his sources, and it definitely looks VisionOS-esque. Beyond a coat of paint, will the OSes start to feel more similar in function too? I'm particularly curious about how iPadOS and MacOS start to close in on each other even more. Apple's iPad has slowly inched toward acting like a computer, with features like Stage Manager for multitasking, and it's felt inevitable that the tablet line would eventually provide a comparable experience to the MacBook. The Apple Watch already tracks sleep and plenty of health metrics, but it doesn't yet use AI to create detailed insights. CNET WatchOS should get Apple Intelligence, and the Health app may be part of it One of the devices that's missed out on Apple Intelligence so far has been the Apple Watch, and that should be changing soon. Apple is expected to put more AI on the next Watch OS, which could help with message summaries, translation and maybe even composing messages. It could also bring overdue health and fitness upgrades. Reports say Apple could be working on adding generative AI insights to its Health app data and even using AI as a medical service, with a launch target of 2026. Health could possibly get a paid subscription tier, similar to Fitness and what many of Apple's current services are adding. This could be like what Google is doing with Wear OS, which has long used Fitbit Premium as a health subscription (a broader Gemini rollout is on the way too). I like AI coaching and insights on a watch, but I don't like subscriptions. We'll see what happens, and if Apple gets into any of these future plans at this WWDC. Battery life boosts Another recent report (again, Gurman) says AI will help Apple improve battery life on its devices. How many devices? The iPhone, but hopefully the Apple Watch, too -- these are the products in the lineup that I find I need to charge more than I'd like. For me, at least, iPads and Macs are mostly fine on battery life as is, but I'll never refuse longer battery life for anything. Apple has made gradual boosts to its battery features over time, but maybe there will be more intelligently applied power modes this time. The Backbone Pro is one of several game controllers for iOS that already exist. Will Apple make a smoother interface for gaming on its devices? Lori Grunin/CNET Game news? Apple may be pushing the importance of games again, just as the Nintendo Switch 2 debuts. Bloomberg reports that the company could release a new app to act as a hub for games and game services including Apple Arcade, becoming an overdue overhaul of Game Center. A number of game controller accessories, like Backbone, already have app hubs that function as game launchers, but Apple has never done much to help organize games on its devices in a way that feels more like what you find on a console. A new app seems like a good fit for those types of controllers, too. Apple just acquired its first game studio: RAC7, the developers of hit Apple Arcade game Sneaky Sasquatch. Apple could also have VR gaming news, if older reports come true: PlayStation VR 2 controllers have been expected to work with Vision Pro headsets, in a push to expand gaming on Apple's VR/AR headset. Maybe that'll be part of a push to get more developers onboard, as Apple could be readying a less expensive version of the Vision Pro in the next year. Right now the headset can't compete with Meta's more affordable Quest headsets in the gaming department. The Vision Pro still doesn't have onboard AI that recognizes your surroundings via camera, but that could be changing soon. Numi Prasarn/Viva Tung/CNET AI: Live translation, and maybe Vision camera advancements Apple opened up camera access to enterprise developers last year, and now it's time for AI tools to emerge for everyone else -- tools that could help describe what you're seeing, or help you remember things too. Apple has already added assistive support for some camera-enabled functions on the Vision Pro and other products, suggesting more to come. Though Apple's WWDC keynote presentation isn't expected to include many announcements of AI strides, the company still needs to compete with Google, Open AI, Perplexity and many others who are making such strides. Reports say live translation will come to some AirPods models, which would mirror what Google and Meta have been doing on glasses and earbuds and on phones. The biggest VisionOS move I'd expect to see is some introduction of camera-aware AI. Apple Intelligence debuted on Apple's VR/AR spatial computer headset earlier this year, but none of the AI can take advantage of the system's cameras to "see" what you're seeing. At least not yet. Google's use of Gemini to access the cameras on upcoming headsets and glasses, and Meta's support of camera access for Quest developers (and its expanding AI tools on Ray-Bans), suggest Apple needs to move this way now to begin paving a way for camera-aware AI to work on future headsets and eventually glasses. Apple Pencil We could see either a brand-new Apple Pencil or updated features that make the current device feel new, according to a report from Bloomberg. Expect to see a new a digital reed calligraphy pen feature unveiled. It's unclear whether this new software will be for both the original Apple Pencil and the Apple Pencil 2, or if we'll actually see a brand-new version of the stylus. A new HomePod-slash-iPad? There could be a new product emerging at WWDC: a look at a long-expected screen-enabled HomePod that may be part of a bigger push into smarter smart home tech. Reports suggest it'll be something like a HomePod now -- speaker-enabled, with an array of mics -- but with a touchscreen. Would it be a screen big enough to act as a photo frame, or something more like a control panel? Where would this thing live, exactly? And what would it cost? Originally, reports of this device even suggested a robotic arm that would allow the screen to follow your face, but those plans seem to be off the table for now. Of all the wild-card product ideas Apple could announce at this show, this seems the most likely. WWDC/Gurman potpourri There are, of course, a number of other rumors from Gurman. Here are some that caught our attention: Messages app: iOS could get the ability to add backgrounds to chats and group chats. iPadOS: Apple may reveal an iPadOS version of the Preview app. iPadOS: MacOS-like multitasking might come to the iPad. iPhone Camera app: The interface could get an overhaul focused on making it simpler to use. We'll know more soon WWDC is happening June 9, with the keynote video presentation streaming at 10 a.m. Pacific. We'll be there at Apple Park, too, covering it in person. We'll know more about how all this software could be hinting at new products, and get a check-in on where exactly Apple is with its AI strategies. And maybe we'll get a bit of product news, too -- you never know.
The Verge
26 minutes ago
- The Verge
Apple's OS overhaul could bring ‘Liquid Glass' UI ahead of a 20th anniversary iPhone.
Mark Gurman's Bloomberg newsletter brings one more pre-WWDC 25 rumor, saying the most exciting part of the conference will be the rumored design overhaul for iPhone, Mac, and other platforms that he says is called Liquid Glass (remember Microsoft's Aero Glass, and Apple's iOS 7 shift away from skeuomorphism?). Adding 'transparency and shine effects in all of Apple's tool bars, in-app interfaces and controls,' he says it sets the stage for next year's 'Glasswing' iPhone design with curved glass sides, slim bezels, and no cutout section in the display.
USA Today
30 minutes ago
- USA Today
When is Apple's WWDC 2025 event? Start time, rumors, more
When is Apple's WWDC 2025 event? Start time, rumors, more Show Caption Hide Caption How to use AI rewriting tools Artificial Intelligence can instantly proofread your writing and make suggestions to tweak the tone of a message, paper or presentation. Problem Solved Apple's Worldwide Developers Conference is less than a day away, though it appears that the event will see a restrained rollout compared to the AI extravaganza held a year ago. The week-long event will kick off with a keynote address on Monday, June 9, and run through Friday, June 13. There will be more than 100 technical sessions for developers, as well as group and one-on-one lab sessions, Apple announced in a news release. USA TODAY will provide live coverage of Monday's keynote, along with the latest updates on the company reveals. Here's what you need to know before Apple's Worldwide Developers Conference 2025. How to watch WWDC 2025 The keynote for WWDC 2025 takes place at Apple Park in Cupertino, California, on June 9 at 1 p.m. ET/10 a.m. PT and be followed by a "Platforms State of the Union." The keynote is set to be streamed on Apple TV, the Apple YouTube page and at USA TODAY will also provide live coverage. What might be revealed at WWDC 2025? Bloomberg's Mark Gurman reported that Apple is preparing a modest rollout of artificial intelligence features, targeting WWDC 2026 to make a larger splash. Gurman wrote in the Power On newsletter that the most significant AI announcement this year will be the opening of Apple's Foundation Models to third-party developers. He noted that the move is being made in hope of spurring the creation of new AI features and apps to help Apple catch up in the artificial intelligence market. Gurman also reported that Apple appears set to add a centralized gaming app in the next iOS update. He indicates the app will be preinstalled with the update and will be a place for users to launch games, find new titles, view leaderboards and communicate with other players. "The new app will serve as a Game Center replacement, and is more ambitious," Gurman wrote. "But it's unlikely to shake up the industry." iOS naming system to change with update: Reports Apple appears set to change the naming system for iOS on Monday, according to Gurman. The company will move from numbering operating system updates sequentially to numbering them by year in a manner similar to the way car models are identified. Under the new system, the Monday update will be iOS 26 instead of iOS 19. Gurman also reported that the Mac operating system will be named Tahoe after the Californian forest.
