Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsApple Confirms New Warning Affecting Almost All iPhone Users
https://www.forbes.com/sites/gordonkelly/2020/04/23/apple-iphone-exploit-vulnerability-ios-13-mail-problem-iphone-11-pro-max-u-iphone-xs-max-xr-update/amp/Apple has already released the best iPhone of 2020, but now millions of iPhone owners both old and new need to be careful because the company has just confirmed a massive iOS security hole which impacts almost every iPhone on the planet.
Following the publication of a devastating report from security firm ZecOps (covered here by Forbes), which claimed that every iPhone running a version of iOS 6 or newer is vulnerable to remote attacks, Apple has now confirmed the problem is real.
So what are we dealing with? What ZecOps discovered is a serious vulnerability in Apples iOS Mail app which allows an attacker to remotely infect an iPhone and gain control over their inbox. In addition, not only did ZecOps find that the attacks can happen without an iPhone owners knowledge but they have been happening for more than two years, with the first attack subsequently detected back in January 2018.
And theres a further kicker: ZecOps found that the attacks are easier to perform on iOS 13 than previous generations of iOS. For example, ZecOps explains that with iOS 12, an attacker requires the iPhone user to open a malicious email. But with iOS 13, it can be triggered unassisted simply from the Mail app being opened in the background.
A fix is at the link.
InfoView thread info, including edit history
TrashPut this thread in your Trash Can (My DU » Trash Can)
BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks)
9 replies, 1521 views
ShareGet links to this post and/or share on social media
AlertAlert this post for a rule violation
PowersThere are no powers you can use on this post
EditCannot edit other people's posts
ReplyReply to this post
EditCannot edit other people's posts
Rec (6)
ReplyReply to this post
9 replies
= new reply since forum marked as read
Highlight:
NoneDon't highlight anything
5 newestHighlight 5 most recent replies
Apple Confirms New Warning Affecting Almost All iPhone Users (Original Post)
WhiteTara
Apr 2020
OP
There are a ton of iPads out there that can't be upgraded past iOS 9 or 10...
thesquanderer
Apr 2020
#5
denem
(11,045 posts)1. Forbes has been running an anti-Apple jihad for months.
Titles like, a million reasons to ditch your iPhone.
They are corrupt.
ecstatic
(32,701 posts)3. Anti windows too. Nt
MoonlitKnight
(1,584 posts)2. Apple Finds No Evidence Hackers Exploited iPhone, iPad Mail Flaw
https://9to5mac.com/2020/04/24/iphone-mail-vulnerabilities/
Apples denial
Bloomberg reports that Apple not only says it can find no evidence to support this claim, but that the vulnerabilities are not sufficient to allow the reported attacks to succeed.
The U.S. company is countering assertions by cybersecurity company ZecOps Inc. that software flaws may have allowed hackers to infiltrate iPhones and other iOS devices for more than a year. Apple launched an investigation and said in a statement the mail issues were insufficient by themselves to allow cyber-attackers to bypass built-in security, adding it will issue a fix soon.
We have thoroughly investigated the researchers report and, based on the information provided, have concluded these issues do not pose an immediate risk to our users, the Cupertino, California company said. The researcher identified three issues in Mail, but alone they are insufficient to bypass iPhone and iPad security protections, and we have found no evidence they were used against customers.
Bloomberg link:
https://www.bloomberg.com/news/articles/2020-04-24/apple-finds-no-evidence-hackers-exploited-iphone-ipad-mail-flaw
Apples denial
Bloomberg reports that Apple not only says it can find no evidence to support this claim, but that the vulnerabilities are not sufficient to allow the reported attacks to succeed.
The U.S. company is countering assertions by cybersecurity company ZecOps Inc. that software flaws may have allowed hackers to infiltrate iPhones and other iOS devices for more than a year. Apple launched an investigation and said in a statement the mail issues were insufficient by themselves to allow cyber-attackers to bypass built-in security, adding it will issue a fix soon.
We have thoroughly investigated the researchers report and, based on the information provided, have concluded these issues do not pose an immediate risk to our users, the Cupertino, California company said. The researcher identified three issues in Mail, but alone they are insufficient to bypass iPhone and iPad security protections, and we have found no evidence they were used against customers.
Bloomberg link:
https://www.bloomberg.com/news/articles/2020-04-24/apple-finds-no-evidence-hackers-exploited-iphone-ipad-mail-flaw
dalton99a
(81,484 posts)6. +1
yortsed snacilbuper
(7,939 posts)4. This ought to be good.
thesquanderer
(11,986 posts)5. There are a ton of iPads out there that can't be upgraded past iOS 9 or 10...
...and I bet the only fix for them will be "don't use the Mail app anymore."
jayfish
(10,039 posts)7. "Apple has already released the best iPhone of 2020"
What a weird statement.
lindysalsagal
(20,680 posts)9. Guess that means nothing new until 21?
I always buy phones about a year later than they come out. Saves money and the glitches are well known and patched.
lindysalsagal
(20,680 posts)8. This is why I don't do money in my phone. Ever. Not even credit cards.
I pay for eset, a great security node on the laptop.