Security researchers at Google have uncovered six fundamental flaws in Apple’s iOS software that could expose iPhone users to cyberattacks.
Natalie Silvanovich and Samuel Gros, from the search giant’s Project Zero software “bug-hunting” team, have published the “details and demo exploit code” for five of six security flaws that can be exploited through iMessage in iOS 12, ZDNet reports.
The final security flaw has not been outlined publicly as Apple is still in the process of resolving the bug, the tech news site says.
The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
All six of the faults highlighted by the researchers are “interactionless”, which means they require no interaction from the user to run, according to The Verge.
Four of the vulnerabilities, including the one that has yet to be fixed, are triggered when an attacker sends “a message containing malicious code”, the site says. The glitch occurs as soon as the user opens the message.
The other two exploits can be used to “leak data from a device’s memory” and view files from an external device, adds ZDNet.
Whenever a software fault is discovered by Project Zero researchers, the manufacturer of the device is informed and given 90 days to come up with a fix, says Forbes. Information about the flaw is then publicly disclosed.
Are iPhone users in danger of a cyberattack?
Probably not in this instance. Apple fixed five of the six vulnerabilities last week and it shouldn’t be too long before the company addresses the final fault.
Although the California-based tech giant has not revealed how it tackled the security flaws, it has advised users that “keeping your software up to date is one of the most important things you can do to maintain your Apple product’s security”, the BBC reports.
To download the latest software for iPhones, currently listed as iOS 12.4, users simply need to go to their smartphone’s Settings app and then select the General tab before pressing Software Update.
Once in the update menu, the phone will inform the user whether a new version of iOS is available to download. If the device is running older software, the user will be given the option to download and install the most recent version, providing their phone isn’t too old to run the update.
-
Violent videos of Charlie Kirk’s death are renewing debate over online censorshipTalking Points Social media ‘promises unfiltered access, but without guarantees of truth and without protection from harm’
-
What led to Poland invoking NATO’s Article 4 and where could it lead?TODAY'S BIG QUESTION After a Russian drone blitz, Warsaw’s rare move to invoke the important NATO statute has potentially moved Europe closer to continent-wide warfare
-
Africa could become the next frontier for space programsThe Explainer China and the US are both working on space applications for Africa
-
South Korea's divide over allowing Google MapsTalking Points The country is one of few modern democracies where the app doesn't work
-
Google avoids the worst in antitrust rulingSpeed Read A federal judge rejected the government's request to break up Google
-
Is AI killing the internet?Talking Point AI-powered browsers and search engines are threatening the death of the open web
-
Unreal: A quantum leap in AI videoFeature Google's new Veo 3 is making it harder to distinguish between real videos and AI-generated ones
-
Google's new AI Mode feature hints at the next era of searchIn the Spotlight The search giant is going all in on AI, much to the chagrin of the rest of the web
-
Is Apple breaking up with Google?Today's Big Question Google is the default search engine in the Safari browser. The emergence of artificial intelligence could change that.
-
Google ruled a monopoly over ad tech dominanceSpeed Read Attorney General Pam Bondi hailed the ruling as a 'landmark victory in the ongoing fight to stop Google from monopolizing the digital public square'
-
Why won't Apple make iPhones in America?Today's Big Question Trump offers a reprieve on tariffs, for now
