A pair of severe security alerts has rocked the Apple ecosystem, exposing millions of users to privacy invasions and unfixable hardware hacks. The tech giant recently rolled out an urgent fix for its Beats Studio Buds wireless earbuds after discovering a major flaw that lets strangers spy on people through their microphones. At the same time, security researchers dropped a separate bombshell about a permanent, unfixable security hole built directly into the microchips of older iPhones. Together, these issues show that even premium tech gadgets are highly vulnerable to clever attackers.

The first issue specifically targets anyone wearing Beats Studio Buds. Cybercriminals who happen to be physically close to an unsuspecting user can secretly hook into the earbuds without ever getting permission from the owner. Once connected, they can easily listen in on private conversations.

Earbuds Turned Into Spy Tools

This wireless eavesdropping bug, officially logged as CVE-2025-20701, carries a very high danger rating because it completely bypasses standard security rules. Usually, connecting a phone to a pair of headphones requires the user to tap a screen or confirm a pairing request. This flaw removes that requirement entirely. According to details released by Apple, a hacker just needs to be within standard Bluetooth range while the earbuds are actively looking for a connection. From there, the attacker can silently hijack the microphone.

The root cause of the problem stems from a third-party audio software development kit used by various headphone brands. In fact, independent security experts originally caught this flaw alongside a couple of other related bugs. Other audio brands like Jabra encountered the same headache and had to push out their own emergency fixes late last year. Experts warn that these types of bugs are incredibly dangerous because they allow hackers to read and alter the internal memory of the headphones, effectively breaking the trust between the accessory and the user’s smartphone. Fortunately, Apple has released a firmware update named 1B211 to plug the hole, and users are urged to update their Beats software immediately.

Unfixable Security Hole Found in iPhone Chips

While the earbud glitch can be fixed with a quick software download, the second security threat is much more permanent. A cybersecurity company recently demonstrated a brand-new exploit called usbliter8 that targets the deep, unchangeable startup code built into Apple’s A12 and A13 processors. This problem cannot be patched with a software update because the error lives inside the permanent physical hardware of the chips themselves. Because of this, the only way for affected users to fully protect themselves is to buy a newer phone.

The technical breakdown of the chip flaw reveals that the issue lies within how the phone handles USB data connections. By sending specifically sized, tiny data packets to the device, an attacker can trigger a memory overflow error. This glitch essentially tricks the chip into letting outside, malicious code run with total control over the system. Interestingly, older chips like the A11 are totally safe because they manually clean up memory after every data transfer. Newer chips like the A14 are also safe because Apple successfully blocked this trick in later generations. However, for the millions of people still using devices powered by A12 and A13 chips, the threat remains active. Security analysts note that while this chip exploit does not immediately break the ultimate security vault of the iPhone, it cracks open a massive door for hackers to launch much more sophisticated and destructive digital attacks.