Apple Fixes Keystroke-Injection Flaw with Firmware Update for Magic Keyboards

Apple has released a firmware update for its proprietary wireless keyboards after a researcher demonstrated he could exploit a flaw to inject keystrokes and perform actions posing as the user. Marc Newlin of SkySafe had been toying with Bluetooth hacks as a challenge when he discovered “unauthenticated Bluetooth keystroke-injection vulnerabilities” in macOS and iOS, both exploitable in Lockdown Mode. “When I found similar keystroke-injection vulnerabilities in Linux and Android, it started to
文 » A