Beats Studio Buds received a firmware upgrade (version 1B211) that patches a Bluetooth vulnerability. The bug let an attacker within range listen through the earbuds' microphone when the devices were unpaired and advertising pairing requests. Apple’s security note says the fix targets open‑source code that was also used in other Apple projects.
The patch matters because the flaw only required proximity and did not need the earbuds to be paired, a scenario that could happen in public spaces or while charging. It highlights how even mature hardware can inherit bugs from shared code libraries, and it reinforces the need for regular OTA updates on truly wireless accessories.
Apple has rolled similar Bluetooth patches to AirPods and HomePod devices in the past, suggesting a broader effort to clean up legacy code. Users should apply the update promptly, but the limited attack surface means most owners are unlikely to have been exposed.
The episode is a reminder that wireless convenience still comes with a quiet security cost.