Again in September, an iPhone person reported a safety challenge that would render an iPhone unusable with nothing however a Flipper Zero multitool and a few creativity. Now, months later, Apple has nonetheless not addressed this challenge in any style, sparking issues.
Basically, somebody with the technical know-how might use the Flipper Zero to ping the AirPods Bluetooth join image on the display screen persistently to lock down a tool. On the time, this was likened to a DDOS assault, which always pings an web service with requests, taking it down. As 9to5Mac has identified, the iOS 17.2 beta does nothing to rectify this.
As of proper now, the gadget must be fairly near the iPhone, and turning off Bluetooth fully can cease it however this flaw could possibly be exploited by customers who know learn how to do worse. To guard your self totally, you have to flip off Bluetooth from settings – doing so from the Management Middle doesn’t work.
An Apple Drawback – iMore’s Take
Again when this initially surfaced, a consultant of Flipper Zero spoke to iMore, claiming:
‘It’s necessary to focus on that is inconceivable on the default {hardware}. We now have taken needed precautions to make sure the gadget can’t be used for nefarious functions. For the reason that firmware is open supply, people can modify it and use the gadget in an unintended means, however we don’t promote this and condone the apply if the purpose is to behave maliciously.
Probably, one might repurpose an Android cellphone with customized firmware or any Arduino-like gadget with BLE capabilities to do the identical. Because of this we agree with the researcher that Apple ought to implement safeguards and get rid of the issue at its core.
The Flipper Zero is just not the one gadget able to spoofing a Bluetooth notification, so it is an issue Apple must repair internally to get rid of the menace for good. Maybe an answer reminiscent of disabling Bluetooth after a handful of pings in a row or solely permitting trusted units to ping a number of instances could possibly be a software-based repair in a future model of iOS.
Apple didn’t reply to a request for remark when the problem was first raised in September.
Extra from iMore