Google discovers six major security flaws in Apple’s iOS 12
Vulnerabilities in iMessage software can be exploited without any interaction from user

Security researchers at Google have uncovered six fundamental flaws in Apple’s iOS software that could expose iPhone users to cyberattacks.
Natalie Silvanovich and Samuel Gros, from the search giant’s Project Zero software “bug-hunting” team, have published the “details and demo exploit code” for five of six security flaws that can be exploited through iMessage in iOS 12, ZDNet reports.
The final security flaw has not been outlined publicly as Apple is still in the process of resolving the bug, the tech news site says.
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.

Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
All six of the faults highlighted by the researchers are “interactionless”, which means they require no interaction from the user to run, according to The Verge.
Four of the vulnerabilities, including the one that has yet to be fixed, are triggered when an attacker sends “a message containing malicious code”, the site says. The glitch occurs as soon as the user opens the message.
The other two exploits can be used to “leak data from a device’s memory” and view files from an external device, adds ZDNet.
Whenever a software fault is discovered by Project Zero researchers, the manufacturer of the device is informed and given 90 days to come up with a fix, says Forbes. Information about the flaw is then publicly disclosed.
Are iPhone users in danger of a cyberattack?
Probably not in this instance. Apple fixed five of the six vulnerabilities last week and it shouldn’t be too long before the company addresses the final fault.
Although the California-based tech giant has not revealed how it tackled the security flaws, it has advised users that “keeping your software up to date is one of the most important things you can do to maintain your Apple product’s security”, the BBC reports.
To download the latest software for iPhones, currently listed as iOS 12.4, users simply need to go to their smartphone’s Settings app and then select the General tab before pressing Software Update.
Once in the update menu, the phone will inform the user whether a new version of iOS is available to download. If the device is running older software, the user will be given the option to download and install the most recent version, providing their phone isn’t too old to run the update.
Sign up for Today's Best Articles in your inbox
A free daily email with the biggest news stories of the day – and the best features from TheWeek.com
-
AI hallucinations are getting worse
In the Spotlight And no one knows why it is happening
-
Social media: How ‘content’ replaced friendship
Feature Facebook has shifted from connecting with friends to competing with entertainment companies
-
The Alien Enemies Act
Feature President Trump is using a long-dormant law to deport Venezuelans. How does it work?
-
Google ruled a monopoly over ad tech dominance
Speed Read Attorney General Pam Bondi hailed the ruling as a 'landmark victory in the ongoing fight to stop Google from monopolizing the digital public square'
-
Why won't Apple make iPhones in America?
Today's Big Question Trump offers a reprieve on tariffs, for now
-
Not there yet: The frustrations of the pocket AI
Feature Apple rushes to roll out its ‘Apple Intelligence’ features but fails to deliver on promises
-
Space-age living: The race for robot servants
Feature Meta and Apple compete to bring humanoid robots to market
-
Apple pledges $500B in US spending over 4 years
Speed Read This is a win for Trump, who has pushed to move manufacturing back to the US
-
TikTok alternatives surge in popularity as app ban looms
The Explainer TikTok might be prohibited from app stores in the United States
-
Is 'AI slop' breaking the internet?
In The Spotlight 'Low-quality, inauthentic, or inaccurate' content is taking over social media and distorting search engine results
-
'Mind-boggling': how big a breakthrough is Google's latest quantum computing success?
Today's Big Question Questions remain over when and how quantum computing can have real-world applications