Monday, May 20, 2024
No menu items!

Top 5 This Week

bama cap

Related Posts

Apple Is Set To Fix Two Major Security Flaws That Would Have Let Hackers Steal Data From iPhones

- Ad-
Share this

Apple is set to fix two major security that would have let hackers steal data from iPhones.

Apple is finally set to patch two major security flaws in the default iOS and iPad’s Mail app which could have millions of devices vulnerable for over 8 years. The vulnerability was first introduced via iOS 6 and could have since been exploited by attackers repeatedly.

The vulnerability was discovered by ZecOps, a San Francisco-based mobile security forensics firm while it was investigating a sophisticated cyberattack against a client that took place in late 2019.

- Ad -

There were security breaches that exposed them.

At the time, Zuk Avraham, ZecOps’ chief executive, claimed that the vulnerability was exploited in at least six cybersecurity breaches that allowed hackers to gain access to devices of high-profile targets.

- Ad-

The exploit, ZecOps explains, is triggered by sending a rigged email that may or may not require and interaction at all, while in other cases may only require the user to open the email.

How does it work?

- Ad -

Once triggered, the email then runs code in the context of the default mail apps, which make it possible to read, modify, or delete messages.

The security firm also suspects the attackers combine the zero-day vulnerability with a separate exploit to give full control over the device. As explained above, the vulnerability can be triggered remotely without any user interaction — an attack known as a zero-click.

What was their objective?

In a separate report published by Reuters, the publication got two independent security researchers to review ZecOps’ claims. The researchers too found the evidence credible but said they had not yet fully recreated its findings.

In its report, ZecOps claims that a number of its customers were targeted, including employees at a Fortune 500 company in North America, with a journalist in Europe and a VIP in Germany also having been targeted using this exploit.

Apple only found out recently so are there people who’ve been exposed?

But what’s concerning is that since Apple wasn’t aware of the vulnerability until recently, the flaw could have been exploited by hackers and even security agencies across the globe to snoop on unsuspecting users who had no idea that their data was being stolen in the first place.

ZecOps says it alerted Apple to the vulnerabilities in February. Both of the flaws have since been patched in the latest beta releases of iOS 13, and a fix is set to arrive in the next publicly available iOS update in iOS and iPadOS 13.4.5.

Share this
- Ad -
Vanessa Waithera
Vanessa Waithera
Vanessa Waithera is a young writer from Daystar University. She has been a writer for 7 years and enjoys it as a hobby and passion. During her free time she enjoys nature walks, discoveries ,reading and takes pleasure in new challenges and experiences. Contact: [email protected]

Popular Articles