Your earbuds shouldn’t develop into another person’s microphone.
Apple launched Beats Firmware Replace 1B211 on June 16 to repair a Bluetooth vulnerability in Beats Studio Buds that might have let an attacker inside vary pay attention by way of the earbuds’ microphone whereas the machine was unpaired and actively looking for a connection.
The problem, tracked as CVE-2025-20701, highlights why wi-fi equipment must be a part of routine machine safety checks, particularly when they’re used close to work telephones, laptops, calls, and voice assistants.
What Apple fastened
Apple patched a Bluetooth vulnerability in Beats Studio Buds that might have uncovered the earbuds’ microphone underneath particular pairing situations.
In its safety advisory, Apple mentioned an attacker inside Bluetooth vary might have been in a position to pay attention by way of the microphone of a tool that was not but paired and was actively looking for a pairing request.
The flaw is tracked as CVE-2025-20701. Apple described it as a vulnerability in open supply code and mentioned Apple software program was among the many affected initiatives. The corporate credited Dennis Heinze and Frieder Steinmetz of ERNW GmbH for reporting the problem.
The Hacker Information reported that CVE-2025-20701 concerned incorrect authorization within the Airoha Bluetooth audio SDK, which may enable a Bluetooth audio machine to pair with out person consent. The publication additionally reported that the vulnerability carried a CVSS rating of 8.8.
ERNW researchers had beforehand mentioned associated Airoha system-on-a-chip flaws on the TROOPERS safety convention in Germany. In accordance with The Hacker Information, the researchers mentioned lots of the vulnerabilities may enable attackers to take over headphones through Bluetooth with out authentication or pairing.
Should-read safety protection
Why the assault window is restricted
This isn’t the type of distant assault that may attain somebody from throughout the web.
An attacker would should be inside Bluetooth vary, and the Beats Studio Buds would should be unpaired and actively searching for a pairing request.
Malwarebytes defined that the flaw affected the authentication course of throughout pairing. In a standard pairing move, headphones and a cellphone set up belief earlier than delicate capabilities, reminiscent of microphone entry, develop into obtainable. On this case, a close-by attacker may doubtlessly pose as a respectable pairing companion earlier than the person finishes connecting the earbuds.
That makes the problem extra related to focused assaults than to broad legal campaigns. Opportunistic attackers are nonetheless extra seemingly to make use of phishing, password theft, or credential stuffing than specialised Bluetooth assaults.
The priority is sharper for individuals who deal with delicate calls or knowledge in public areas, together with executives, journalists, public officers, safety employees, and staff working close to shared units.
The right way to examine the replace
Apple mentioned Beats firmware updates are delivered routinely whereas the headphones are paired with and in Bluetooth vary of an iPhone, iPad, or Mac.
There isn’t a handbook “replace now” button for Beats Studio Buds. Customers can examine the put in firmware model in Bluetooth settings.
On an iPhone or iPad, go to Settings, then Bluetooth, and faucet the knowledge button subsequent to the Beats Studio Buds. On a Mac, go to System Settings, then Bluetooth, and examine the knowledge subsequent to the headphones.
The firmware model ought to present 1B211 after the replace has been utilized. If an older model seems, customers ought to hold the earbuds charged, linked, and close to their Apple machine till the replace installs.
For IT groups, the broader lesson is to incorporate peripherals in safety steerage.
Bluetooth equipment might sit outdoors conventional endpoint administration, however they nonetheless work together with microphones, units, accounts, and conversations that organizations want to guard.
Learn subsequent: Apple pushed a uncommon patch after researchers flagged a “DarkSword” flaw that might have an effect on hundreds of thousands of iPhones.
