IPhone and iPad owners have reason to be worried. Cybersecurity company ZecOps said on Wednesday April 22 that it had identified a major security hole in the mail application installed by default on iOS, reports The Verge . All Apple devices are therefore affected.
Undetectable attacks for the user
This vulnerability would have appeared for the first time in 2012, under iOS 6. But the first attack would date from January 2018 on devices equipped with iOS 11.2.2 according to the cybersecurity company, which specifies in a note that these attacks are almost undetectable for the user.
Two cases arise. On iOS 13, it is sufficient that the mail application is open and that the victim receives a message. No need to click to get infected. On iOS 12, the process is more complicated and assumes that the victim opens the email.
You've Got (0-click) Mail! Unassisted iOS Attacks via MobileMail / Maild in the Wild via @ZecOps Blog https://t.co/tHbq1ZUuom
- ZecOps (@ZecOps) April 22, 2020Hacker could take control of the device
Several companies based in North America, Japan, Israel or Saudi Arabia have been victims of this security breach according to ZecOps. Behind these attacks, the cybersecurity company identified a group of hackers. Exploitation of this flaw allows the attacker to read, modify or even delete any message from the user. In some cases, he can take control of the device, note 01Net .
Apple has yet to make any comments, but a patch in the next iOS update would fix the problem. In the meantime, iPhone and iPad users are advised not to open the Apple email app, but to switch to another email system, such as Gmail or Outlook.
High-Tech
“Krook”: A security breach affects nearly a billion smartphones of all brands
High-Tech
App Store: 32 applications pinned because they subscribe users without their knowledge
- Cybersecurity
- Iphone
- Apple
- High-Tech
- Hacker