PSA: If you’ve ever used a Sennheiser headset with your Mac, it is wide open to attack

If you’ve ever used a Sennheiser headset or speakerphone device with your Mac (or Windows PC), the accompanying HeadSetup app has left your machine wide open to attack.

In what has been described as a ‘monumental security blunder,’ the app allows a bad actor to successfully impersonate any secure website on the Internet …

ArsTechnica explains.

To allow Sennheiser headphones and speaker phones to work seamlessly with computers, HeadSetup establishes an encrypted Websocket with a browser. It does this by installing a self-signed TLS certificate in the central place an operating system reserves for storing browser-trusted certificate authority roots. In Windows, this location is called the Trusted Root CA certificate store. On Macs, it’s known as the macOS Trust Store.

The critical HeadSetup vulnerability stems from a self-signed root certificate installed by version 7.3 of the app that kept the private cryptographic key in a format that could be easily extracted. Because the key was identical for all installations of the software, hackers could use the root certificate to generate forged TLS certificates that impersonated any HTTPS website on the Internet. Although the self-signed certificates were blatant forgeries, they will be accepted as authentic on computers that store the poorly secured certificate root. Even worse, a forgery defense known as certificate pinning would do nothing to detect the hack.

Although the app encrypted the key with a passphrase, the passphrase itself (SennheiserCC) was stored in plaintext in a configuration file.

“It took us a few minutes to extract the passphrase from the binary,” Secorvo researcher André Domnick told Ars. From then on, he effectively had control of a certificate authority that any computer that had installed the vulnerable Sennheiser app would trust until 2027, when the root certificate was set to expire. Dominick created a proof-of-concept attack that created a single certificate […] that spoofed Google, Sennheiser, and three of Sennheiser’s competitors.

Even if you later uninstalled the app, the certificate would still be trusted. All Mac users who have ever used the HeadSetup app should manually uninstall the certificate by following Sennheiser’s instructions. (The instructions leave out the first step, which is to ensure you’re in the Finder.)

If you still use the app, you can download the latest version of HeadSet, which should also delete the vulnerable certificate, but the safest option would be to do it manually as above first


Tim Hortons has launched its first ever kids meals

For the first time in the chain’s more than 50-year history, Tim Hortons has introduced kids meals.

The Timmies Minis kids menu launched today and featured three entrées for kids to pick from.

You’ll be able to choose from a mini melt grilled cheese sandwich, a mini grilled chicken wrap or a two-piece chicken strip meal.

With that main piece, kids will also choose from apple slices, SunRype FunBites, Black Diamond Cheestrings or snack-sized potato wedges as a side.

Finally, the drink options include white milk, chocolate milk, orange juice, apple juice or a bottle of water.

All together, the Timmies Minis Packs will set you back $4.99.

<who>Photo Credit: Newswire</who>Team Canada hockey player Meaghan Mikkelson helped Tim Hortons launch the new kids menu today.

Photo Credit: Newswire
Team Canada hockey player Meaghan Mikkelson helped Tim Hortons launch the new kids menu today.

“We asked parents and kids what was most important to them when selecting a kid’s meal and the number one answer for both groups was taste,” says Alex Macedo, president of Tim Hortons.

“We conducted extensive research on the best taste for any kids meal in Canada and we are very proud that we are launching kids products that moms, dads and kids alike will get excited about.”

Each Timmies Minis Pack comes in a box that celebrates Canada and will change from season to season.

Kids meals won’t come with a toy, like at McDonald’s, but instead will feature a fun activity book that will change monthly.

Another nice feature that customers can feel good about is that 10 cents from every Timmies Minis Pack sold goes to the Tim Hortons Children’s Foundation.