Oligo researchers have demonstrated an AirBorne hacking technique capable of taking over an AirPlay-enabled Bose speaker to display their company’s AirBorne logo. While Bose was used for testing, the researchers clarified this was not to single out the brand. Bose has yet to respond to WIRED’s request for comment.
The AirBorne vulnerabilities identified by Oligo also impact CarPlay, a protocol connecting to vehicles’ dashboard interfaces. Oligo warns that hackers could potentially access the automotive computer, known as the head unit, in over 800 CarPlay-enabled models. Exploiting these vulnerabilities would require a hacker to pair a device via Bluetooth or USB, significantly limiting the threat.
In contrast, the flaws in the AirPlay SDK of home media devices present a potential risk for hackers aiming to remain undetected on a network, possibly installing ransomware or conducting espionage. These attacks could exploit devices often neglected by both consumers and network defenders. Oligo researcher Uri Katz expressed concern over the number of vulnerable devices, noting that many users seldom update their speakers.
The researchers began investigating AirPlay properties while analyzing vulnerabilities allowing attackers to access internal network services from malicious websites. In this earlier research, Oligo’s team found they could bypass fundamental web browser protections designed to prevent unauthorized access.
During these examinations, it became apparent that AirPlay was one of the services accessible through the exploited bugs. The AirBorne vulnerabilities, although distinct from previous findings, were inspired by AirPlay’s open connectivity model.
Their discovery of flaws in the AirPlay SDK suggests vulnerabilities may exist in numerous device models, especially those integrating the AirPlay SDK without Apple certification.
Patrick Wardle, CEO of the security firm DoubleYou, stated that when third-party manufacturers use Apple technologies like AirPlay via an SDK, Apple loses control over hardware and software updates. This oversight can leave users at risk and potentially undermine trust in the broader Apple ecosystem.
The article was updated to clarify that the logo in Oligo’s video pertains to AirBorne, not the company itself.
