Apple addressed a Bluetooth keyboard injection flaw with Magic Keyboard Firmware Update 2.0.6 (CVE-2024-0230). Discovered by Marc Newlin, the vulnerability involves session management, allowing an attacker with physical access to extract the Bluetooth pairing key for traffic espionage. The update includes enhanced checks to mitigate this risk. Unpatched devices are vulnerable under specific conditions, emphasising the importance of updating.
You Might Be Interested In
- EU Court Rejects Encryption Backdoors, Upholds Privacy Rights
- Russian Military Hackers Responsible for Disrupting US Water Utilities
- EU Commission Establishes European AI Office
- Black Cat Claims Trans-Northern Pipelines Cyberattack
- Zero-Day Ivanti Vulnerabilities Led to MITRE Security Breach
- Google Patches Flaw in Qualcomm Processors Android Devices [CVSS 9+]