Home Mobile Phones Google discovered several iPhone security flaws

Google discovered several iPhone security flaws

- Advertisement -

Google security researchers have discovered a total of six vulnerabilities in Apple’s iOS software, one of which the iPhone manufacturer has yet to successfully patch. ZDNet reports that the flaws were discovered by two Google Project Zero researchers, Natalie Silvanovich and Samuel Groß, and five of them were patched with last week’s iOS 12.4 update, which contained several security fixes.

All of the vulnerabilities discovered by the researchers are “interactionless,” meaning they can be run without any interaction from a user, and they exploit a vulnerability in the iMessage client. Four of them (including the as-yet-unpatched vulnerability) rely on an attacker sending a message containing malicious code to an unpatched phone and can execute as soon as a user opens the message. The remaining two rely on a memory exploit.

- Advertisement -

Details of the five patched bugs have been published online, but the final remaining bug will remain confidential until it can be addressed by Apple. Regardless, if you haven’t updated your iPhone to iOS 12.4, now might be a good time. Silvanovich will host a talk on interactionless iPhone attacks at next week’s Black Hat security conference in Las Vegas.

We’re lucky that these vulnerabilities were discovered by security researchers who had no interest in exploiting them for their own benefit. ZDNet notes that bugs like these are invaluable to manufacturers of intercept tools and surveillance software, and the right buyer would likely pay millions for access to them before Apple is able to patch its software in defense. In disclosing these bugs to Apple, these security researchers have done a service to iOS users worldwide.

FOLLOW US ON TWITTER SUBSCRIBE TO OUR YOUTUBE CHANNEL
alltechng
Technology is making life more meaningful, improves productivity... We are tech lovers...

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Must Read

video

iPhone 11Pro and Triple Lens iPads

iPhone 11Pro and Triple Lens iPad...

Bluetooth vulnerability could expose device data to hackers

A fast-acting hacker could be able to weaken the encryption of Bluetooth devices and subsequently snoop on communications or send falsified ones to take...

Nigeria Government changes Twitter handle name

The Nigeria Federal Government has changed the name of its handle on micro blogging site Twitter. It announced this in a tweet on Thursday, noting...

Verve Global Card launches first international transaction in New York

Verve, a leading payments technology and card business in Africa, and Discover Global Network, the payments brand of Discover, has held an event to...

LPG advocate warns ‘bomb-like’ explosions may hit Nigerian homes

Worried by the continued influx of fake and sub-standard Liquefied Petroleum Gas (LPG) cylinders into Nigeria, a cooking gas advocate has warned that Nigerian...