Skip to main content

Your Siri conversations may have been recorded without your permission

Apple has patched a security flaw that left macOS and iOS devices vulnerable to having interactions with Siri spied upon and recorded when using accessories such as AirPods or Beats headsets via Bluetooth.

The flaw, which is now referred to as vulnerability CVE-2022-32946, was discovered by app developer Guilherme Rambo, according to Apple Insider.

Single AirPods Pro in case.
Phil Nickinson / Digital Trends

The flaw was associated with Mac and iPhone or iPad products and had the opportunity for users to have their audio accessories hacked when using apps associated with audio due to the “app needing microphone access or showing that it was using the microphone,” Apple Insider said.

Recommended Videos

According to Rambo, he realized something was off when he experienced dips in audio quality while using Siri with AirPods on but not when using the microphone in this macOS device. However, the change in audio quality returned when he was in a video conference.

He tested his suspicions by writing a command-line tool called “bleutil” and discovered that the tool intercepted audio data for Bluetooth Low Energy devices connected to macOS products and also didn’t ask for microphone permission to access the system.

To further test the flaw, he created an app that could record users through Siri without requesting permission. The feature wouldn’t even register on a macOS Control Center, the only thing that would come up is “Siri & Dictation,” Apple Insider said.

The app was compatible with iPhone, iPad, Apple Watch, and Apple TV for iOS 15 and the latest iOS 16 beta at that time in late August.

The developer reported the flaw to Apple on August 26, which allowed the brand to investigate its source and find a fix, which was rolled out on the iOS 16.1 update for iPhones and the latest macOS Ventura update for computers. However, it remains unknown whether any bad actors got access to the flaw while it was still open.

Rambo got a $7,000 bounty from Apple for his efforts.

This isn’t Apple’s first run with Bluetooth issues on its devices. In March, the brand released an update for its macOS Monterey 12.3.1 to address Bluetooth and display issues that have been plaguing Mac owners for several weeks. In particular, the update was sent to fix a power management flaw with Bluetooth headphones.

Fionna Agomuoh
Fionna Agomuoh is a Computing Writer at Digital Trends. She covers a range of topics in the computing space, including…
The M5 iPad Pro launch may have less focus on feature upgrades
Watching video on M4 iPad Pro.

If you were looking to save money on an iPad Pro with an OLED display, you can go ahead and invest in the M4 iPad Pro because the M5 iPad Pro might not have any new features to set it apart from its predecessor.

Details from the research firm, Meritz Securities suggest that upgrades for the upcoming professional-tier iPad may primarily come down to the M5 chip, with Apple expected to save bigger feature overhauls for subsequent generations of the tablet series.

Read more
The Gemini app is now the only way to access Google’s AI on iOS
The Google Gemini AI logo.

Google announced Wednesday that it is removing its Gemini AI model from the Google app on iOS, meaning that Apple users will need to download the dedicated Gemini app in order to use it.

When Google first introduced its Gemini AI to the Apple product ecosystem, it did so through its existing Google App, which had been available on iPhones and iPads since 2008. It wasn't until last November that Google released its dedicated Gemini app. Over the past three months, iOS users had their choice of which app through which to access the chatbot, but that is no longer the case.

Read more
There’s a new way to use ChatGPT on your iPhone. Here’s how it works
Someone holding the iPhone 16 Pro with its display on.

There is a new way to access ChatGPT on Apple's iPhone and iPad. As reported by MacRumors, the latest version of the ChatGPT app makes it even easier to access the app's SearchGPT feature.

ChatGPT, a sophisticated AI chatbot developed by OpenAI, utilizes an ever-growing dataset to answer questions, write stories, summarize factual topics, translate languages, and create creative content. It is available on Apple devices through the ChatGPT app, and it is expected to be integrated into Siri in a future version of Apple Intelligence.

Read more