Apple Fixes Keystroke-Injection Flaw with Firmware Update for Magic Keyboards
Apple has released a firmware update for its proprietary wireless keyboards
after a researcher demonstrated he could exploit a flaw to inject keystrokes and
perform actions posing as the user.
Marc Newlin of SkySafe had been toying with Bluetooth hacks as a challenge when
he discovered “unauthenticated Bluetooth keystroke-injection vulnerabilities” in
macOS and iOS, both exploitable in Lockdown Mode.
“When I found similar keystroke-injection vulnerabilities in Linux and Android,
it started to