Apple rushes to block ‘zero-click’ iPhone spyware

[UK Sentinel]

Apple has issued a software patch to block so-called “zero-click” spyware that could infect iPhones and iPads.

Independent researchers identified the flaw, which lets hackers access devices through the iMessage service even if users do not click on a link or file.

The problem affects all of the technology giant’s operating systems, the researchers said.
Apple said it issued the security update in response to a “maliciously crafted” PDF file.

University of Toronto’s Citizen Lab, which first highlighted the issue, had previously found evidence of zero-click spyware, but “this is the first one where the exploit has been captured so we can find out how it works,” said researcher Bill Marczak.
The researchers said that the previously unknown vulnerability affected all major Apple devices, including iPhones, Macs and Apple Watches.

Citizen Lab also said the security issue was exploited to plant spyware on a Saudi activist’s iPhone, adding that it had high confidence that the Israeli hacker-for-hire firm, NSO Group, was behind that attack.

In a statement to the Reuters news agency, NSO did not confirm or deny that it was behind the spyware, saying only that it would “continue to provide intelligence and law enforcement agencies around the world with life-saving technologies to fight terror and crime”.

Security experts have said that although the discovery is significant, most users of Apple devices should not be overly concerned as such attacks are usually highly targeted.

Source: BBC.co.uk

Share the knowledge

Attachments:

1. 

   zero-click-iPhone-spyware.png
   

In a completely sane world, madness is the only freedom (J.G.Ballard).

You need to login in order to vote

[UK Sentinel]

Apple said in a blog post that it had issued the iOS 14.8 and iPadOS 14.8 software patches after it became aware of a report that the flaw “may have been actively exploited”.

The announcement came as the technology giant prepared to unveil new devices at its annual launch event on Tuesday.

The company is expected to reveal new iPhones and updates to its AirPods and Apple Watch.

Share the knowledge

In a completely sane world, madness is the only freedom (J.G.Ballard).

You need to login in order to vote

[UK Sentinel]

My Apple iPhone 11 pro updated to version iPadOS 14.8 last night without any issues (took ages) and families iPhones 11 also updated as expected.

Apple watches seem to struggle with memory (storage) issues and needed un-pairing to continue ?

Share the knowledge

In a completely sane world, madness is the only freedom (J.G.Ballard).

You need to login in order to vote

[Tomar]

All of these studies are very curious and can be talked about for a long time, but I think every device in the world is not 100 percent hacker-proof. Adopt the most basic security rules and stay out of the way of hackers

Share the knowledge

Liked by:

You need to login in order to vote

[UK Sentinel]

Tomar wrote:

All of these studies are very curious and can be talked about for a long time, but I think every device in the world is not 100 percent hacker-proof. Adopt the most basic security rules and stay out of the way of hackers

Good practice

Share the knowledge

In a completely sane world, madness is the only freedom (J.G.Ballard).

You need to login in order to vote

[Author]

Posts