comscore Apple iPhone bug allows remote access to your private data | BGR India
News

iPhone vulnerable to zero-day email hack; Apple confirms patch is coming

The new bug is in the Apple Mail app, and allows malicious code to run on iPhones, to gain remote access to private data.

  • Updated: April 24, 2020 12:32 PM IST
Apple iPhone 11 Pro Review (5)

Tech giant Apple is yet to roll out a security patch for a newly discovered iPhone vulnerability. As per security researchers, this flaw has already been exploited by hackers to steal data from unsuspecting victims. The news spread after Zuk Avraham from security firm ZecOps said that the company had discovered a new bug last year during a routine investigation. Further, he said that the bug was used to attack at least six organizations since as early as 2018. Also Read - Apple iPhone SE Plus launch pushed back, iPhone 12 experiencing mass production delays

According to Avraham, the bug lies in the iPhone’s default Mail application. If an attacker were to send a certain specially crafted email to the victim’s device, he could overrun the device’s memory, which could allow remote execution of malicious code. Further, this could be used to steal data from the device. Also Read - Apple Music expands to 52 new countries, offering 6 month free trial

Watch: Top 5 Instagram tips and tricks

The bug has apparently been present since iOS 6, which was first released in 2012. Further, the latest iOS 13 is the worst affected version. This is because, on the latest versions of iOS 13, the bug doesn’t even need interaction by the victim. However, macOS, Apple’s operating system for its computers, is not vulnerable, confirmed Avraham. Also Read - Apple iPad Pro with mini-LED display and 5G pushed back to 2021 due to supply constraints

Apple offers a statement on the bug

“Apple takes all reports of security threats seriously. We have thoroughly investigated the researcher’s report and, based on the information provided, have concluded these issues do not pose an immediate risk to our users. The researcher identified three issues in Mail, but alone they are insufficient to bypass iPhone and iPad security protections, and we have found no evidence they were used against customers. These potential issues will be addressed in a software update soon. We value our collaboration with security researchers to help keep our users safe and will be crediting the researcher for their assistance,” an Apple spokesperson said in a statement.

Similar security flaws in iPhones have proven to be some of the biggest and even most paying bugs. The Cupertino-based company will often pay up to $50,000 to anyone who can spot similar bugs, as part of a bug-bounty program. Such exploits are often used against targets, being implemented by criminals and terrorists in highly precise operations. However, as per a report by TechCrunch, exploits like these are also used by some governments to target certain ethnic groups.

Avraham further added in his blog post that the attacks that made use of the bug included victims in a Fortune 500 company and a journalist in Europe. While attackers were not named, Avraham suggested that a nation-state was one of the attackers. Apple is expected to soon launch a stable update with the flaw taken care of. Apparently, it has already been fixed in a beta update.

For the latest tech news across the world, latest PC and Mobile games, tips & tricks, top-notch gadget reviews of most exciting releases follow BGR India’s Facebook, Twitter, subscribe our YouTube Channel.
  • Published Date: April 23, 2020 9:16 AM IST
  • Updated Date: April 24, 2020 12:32 PM IST



new arrivals in india

Samsung Galaxy M51
Samsung Galaxy M51

24,999

Poco M2
Poco M2

10,999

Oppo F17 Pro
Oppo F17 Pro

22,990

Realme 7 Pro
Realme 7 Pro

19,999

Realme 7
Realme 7

14,999

Xiaomi Redmi 9A
Xiaomi Redmi 9A

6,799

Vivo Y20
Vivo Y20

12,990

Xiaomi Redmi 9
Xiaomi Redmi 9

8,999

Nokia 5.3
Nokia 5.3

13,999

Motorola Moto G9
Motorola Moto G9

11,499

Realme C15
Realme C15

9,999

Realme C12
Realme C12

8,999

Samsung Galaxy Note 20
Samsung Galaxy Note 20

77,999

Xiaomi Redmi 9 Prime
Xiaomi Redmi 9 Prime

9,999

Oppo Reno4 Pro
Oppo Reno4 Pro

34,990

Samsung Galaxy M01 Core
Samsung Galaxy M01 Core

5,499

Realme 6i
Realme 6i

12,999

Asus Rog Phone 3
Asus Rog Phone 3

49,999

OnePlus Nord
OnePlus Nord

24,999

Infinix Smart 4 Plus
Infinix Smart 4 Plus

7,999

Xiaomi Redmi Note 9
Xiaomi Redmi Note 9

11,999

Samsung Galaxy M01s
Samsung Galaxy M01s

9,999

Vivo X50 Pro 5G
Vivo X50 Pro 5G

49,990

Vivo X50 5G
Vivo X50 5G

34,990

Realme C11
Realme C11

7,499

Poco M2 Pro
Poco M2 Pro

13,999

Realme X3
Realme X3

24,999

Realme X3 SuperZoom
Realme X3 SuperZoom

27,999

Tecno Spark Power 2
Tecno Spark Power 2

9,999

Oppo A12
Oppo A12

9,990

Oppo A52
Oppo A52

16,990

Samsung Galaxy A21s
Samsung Galaxy A21s

15,999

Oppo Find X2
Oppo Find X2

64,990

Motorola One Fusion Plus
Motorola One Fusion Plus

17,499

Samsung Galaxy A31
Samsung Galaxy A31

20,999

Samsung Galaxy M01
Samsung Galaxy M01

8,999

Samsung Galaxy M11
Samsung Galaxy M11

10,999

Infinix Hot 9 Pro
Infinix Hot 9 Pro

9,999

LG Velvet
LG Velvet

Price Not Available

Xiaomi Mi Note 10 Lite
Xiaomi Mi Note 10 Lite

Price Not Available

Apple iPhone SE 2020
Apple iPhone SE 2020

42,500

Honor 30 Pro
Honor 30 Pro

Price Not Available

Honor 30
Honor 30

Price Not Available

OnePlus 8
OnePlus 8

44,999

OnePlus 8 Pro
OnePlus 8 Pro

54,999

Xiaomi Redmi Note 9 Pro
Xiaomi Redmi Note 9 Pro

13,999

Motorola Moto E4
Motorola Moto E4

8,999

Samsung Galaxy On Max
Samsung Galaxy On Max

9,775

nubia N2
nubia N2

15,999

Karbonn K9 Kavach 4G
Karbonn K9 Kavach 4G

5,290

Motorola Moto C Plus
Motorola Moto C Plus

6,999

Best Sellers