#airpods
12.07.2024 Angriffsmöglichkeit über Bluetooth
"Fast Connect" war sehr redselig
Auf der Linux Hilfeseite gnome.org berichtet ein Nutzer über Probleme mit seinen neuen Apple AirPods 3:
Nach anfänglichem Erstaunen darüber, wie magisch sie mit meinem (Apple-)Telefon und meinem (Apple-)Laptop zusammenarbeiteten, wechselte ich zurück in meine Alltagswelt und startete den Laptop wieder unter Linux. Und während die AirPods auch dort einigermaßen gut funktionierten, weigerten sie sich danach, sich gleichzeitig mit meinem Telefon und meinem Laptop zu verbinden.
Der Grund war eine Schwachstelle in der Funktion "Fast Connect", die Apple für die Verbindung von Bluetooth-Peripheriegeräten anbietet. Der Hauptzweck davon scheint zu sein, die Zeit, die für den Aufbau einer Verbindung zwischen zwei Apple-Geräten benötigt wird, von 1 Sekunde auf etwa 0,5 Sekunden zu reduzieren.
Dabei "dehnt" Apple das Fast-Connect-Protokoll, ohne die Bluetooth-Spezifikation zu verletzen, und kann dabei noch drei weitere Nachrichten austauschen, um alles auszuhandeln, was für eine vollständige Verbindung der beiden Geräte erforderlich ist.
Allerdings kann sich mit dieser Schwachstelle jeder mit den AirPods verbinden, solange er die feste Bluetooth-MAC-Adresse der AirPods kennt, die über Funk bekannt gegeben werden, wenn sich ein Bluetooth-Gerät im Pairing-Modus befindet. Wenn eine Verbindung hergestellt ist, kann der Angreifer alles tun, was ein legitimes Gerät tun kann: das Mikrofon abhören, Musik abspielen, die Musik, die gerade von einem anderen verbundenen Gerät abgespielt wird, sehen und pausieren oder verschiedene Dinge tun, die das AAP-Protokoll tun kann, auch Einstellungen ändern, die AirPods durch das Senden schlecht formatierter Nachrichten zum Absturz bringen u.v.m.
Die Sicherheitslücke (CVE-2024-27867) ist inzwischen auch Apple bekannt und der Tipp des Autors auf gnome.org und auch von Apple lautet: you should make sure the firmware is up to date.
Mehr dazu bei https://blogs.gnome.org/jdressler/2024/06/26/do-a-firmware-update-for-your-airpods-now/
Kategorie[21]: Unsere Themen in der Presse Short-Link dieser Seite: a-fsa.de/d/3BC
Link zu dieser Seite: https://www.aktion-freiheitstattangst.org/de/articles/8837-20240712-angriffsmoeglichkeit-ueber-bluetooth.html
Link im Tor-Netzwerk: http://a6pdp5vmmw4zm5tifrc3qo2pyz7mvnk4zzimpesnckvzinubzmioddad.onion/de/articles/8837-20240712-angriffsmoeglichkeit-ueber-bluetooth.html
Tags: #FastConnect #AirPods #Apple #Linux #Verbraucherdatenschutz #Datenschutz #Datensicherheit #Ergonomie #Datenpannen #Sicherheitslücke #Smartphone #Handy #Hacking #MACAdresse #PairingModus
Anyone who knows the #Bluetooth #MAC address (which is somewhat public) can connect to your #AirPods and listen to the microphone or play music. 😱
source: https://blogs.gnome.org/jdressler/2024/06/26/do-a-firmware-update-for-your-airpods-now/
#apple #security #privacy #fail #bug #update #problem #warning #software #exploit #news
#SWAT Team Raids #Innocent Family Over Stolen #AirPods Dropped on Their Street
The family, represented by Schock and Erich Vieth, is suing for damages stemming from embarrassment, unreasonable use of force, loss of liberty, and other factors. The lawsuit notes that neither Shamily or Briscoe had been in any trouble with the law for at least a dozen years prior to the incident. "There was no probable cause for the search warrant and had the affidavit contained complete information, the state court judge would not have approved the warrant," the suit alleges.
#police #fail #technology #gps #apple #theft #justice #news #usa
CT Scanner Reveals The Difference Between Real and Fake AirPods
#digitalaudiohacks #airpods #ctscan #hackaday
-- Delivered by RssEverything service
https://hackaday.com/2023/11/29/ct-scanner-reveals-the-difference-between-real-and-fake-airpods
https://newsie.social/@ProPublica/110866596762001050 ProPublica@newsie.social - Years After Being Ticketed at School for a Theft She Said Never Happened, Former Student Prevails in Court
Amara Harris declined plea deals and ultimately won a legal fight that dates back to 2019.
#Illinois #CriminalJustice #Naperville #Airpods #Schools #Students #Police #Crime #Courts #Teachers #News #Verdict #Teens #Parents
Man open-sources the self-repairable AirPods Pro case that Apple won’t make
Consumer tech has faced scrutiny over the years around “planned obsolescence”: making devices so difficult to repair that shoppers have to buy new products and toss devices sooner than they’d like. Now, one do-it-yourself-er is on a mission to prove that it doesn’t have to be this way. And he’s starting with the (original) Apple AirPods Pro.
Today, the technologist revealed his latest concoction: an AirPods Pro case with a user-replaceable battery, USB-C port, and open source designs.
Now if only this could be done for the actual AirPods!
See https://arstechnica.com/gadgets/2023/07/man-open-sources-the-self-repairable-airpods-pro-case-that-apple-wont-make/
#Blog, #AirPods, #opensource, #repairability, #technology
The Swap Club: This Company Saves Your AirPods From Planned Obsolescence
The Swap Club believes you should trade your old tech in for a refurbished version. They even do the refurbishing for you: While they don’t reveal exactly how they do it, they told iFixit they rely on “specialized equipment and precision robotics” to make “Podswap” possible.
It’s a Swap Club cycle: The company sends you a refurbished pair of AirPods, then you send in yours within three to five days. The Swap Club then attempts to resuscitate those AirPods, performing the complicated task of replacing the batteries without breaking the earbuds altogether. They then clean both AirPods thoroughly, so you won’t be dealing with someone else’s earwax if that’s what you’re worried about.
You still need to pay the Swap Club for a refurbished pair of AirPods: $59.99 for a standard pair, or $49.99 for one with more visible wear and tear.
I suppose some cost is better than just throwing your old pair away. I wonder how much longer it will be legal to just keep selling “new only” AirPods? Battery sellers have often got to at least accept the old batteries for proper disposal / recycling. I did post a few months ago about one set of earphones which allowed battery swap outs, but apart from that, these devices really generate e-waste.
But with regard to Apple AirPods specifically… my first, and only pair, of AirPods I bought gave up the ghost just after 2 years old when the warranty had expired. I was pretty disgusted considering what they cost. After a while I did buy a cheap pair of wireless earphones, and I just realised, that many years later these cheap ones are still working. That now makes me super suspicious as to why the expensive AirPods just stopped working after 2 years!
So maybe what I’m realising now as my Aha moment, is rather buy cheaper 3rd party earphones. They’ll last longer!
But what we do know for sure is, Apple won’t change this situation unless legally forced to do so…
See https://lifehacker.com/this-company-saves-your-airpods-from-planned-obsolescen-1850302733
#Blog, #AirPods, #ewaste, #technology
CAPod is an open-source companion app for AirPods users on Android
When Apple develops some of its products, it sometimes pretends that no other devices exist outside its walled garden. For example, the company never supported Bluetooth file sharing between iOS and Android — even when the technology was still popular and actively depended on. That’s because it has its own proprietary AirDrop feature, which works on its devices only.
Another example is AirPods. While you can use AirPods for basic listening on an Android device, you still miss out on a lot of privileges that are exclusive to newer iPhones, iPads, and Macs. These include checking the individual battery percentages of each earbud and the case, remapping the playback controls, etc. CAPod is a free companion app for AirPods users on Android. While it doesn’t support all of iOS’ features, it still bridges part of the gap on Android.
See https://www.xda-developers.com/capod-airpods-android/
#technology #android #airpods #CAPod
#Blog, ##android, ##capod, ##opensource, ##technology
Emma #Raducanu said that her initial goal in the U.S. Open was to win enough #money to replace her lost #AirPods.
Source: https://www.snopes.com/fact-check/emma-raducanu-us-open-airpods/
What is the moral of the story?
Russian Troops Steal AirPods, Give Away Location Through Find My App | The Mac Observer
A Ukrainian man has been found to track the moments of retreating Russian forces using a pair of AirPods stolen from his home near Kyiv.
Ukrainian man Vitaliy Semenets told The Times of London that Russian forces stole his AirPods from his home in Hostomel. Once stolen, Semenets realized he could monitor the forces by tracking them through Apple’s Find My app.
#technology #tech #Apple #AirPods #FindMy #Ukraine #politics #Russia #Putin #UkraineInvasion #UkraineWar #SolidarityWithUkraine #StandWithUkraine
