Apple addresses Bluetooth security vulnerability with Magic Keyboard firmware update

Apple has rolled out a firmware update for several versions of its Magic Keyboard, addressing a Bluetooth security vulnerability.

The update, labeled version 2.0.6, is aimed at Magic Keyboard, Magic Keyboard (2021), Magic Keyboard with Numeric Keypad, Magic Keyboard with Touch ID, and Magic Keyboard with Touch ID and Numeric Keypad.

The security flaw could be exploited by someone with physical access to the keyboard, enabling them to extract the Bluetooth pairing key and monitor Bluetooth traffic. The session management issue has been resolved with improved checks.

The update is automatically delivered in the background while the Magic Keyboard is actively paired with a device running macOS, iOS, iPadOS, or tvOS. Users can verify their Magic Keyboard's firmware version in the Bluetooth settings on their Mac.