For at least two years, hackers used compromised websites to install malware on iPhones that could gather and upload a user's photos, contacts, and other data, Google cybersecurity researcher Ian Beer explained in a blog post Thursday evening. "There was no target discrimination: Simply visiting the hacked site was enough for the exploit server to attack your device, and if it was successful, to install a monitoring implant." The exploits were discovered "in the wild," Beer said, meaning they were being used by real cybercriminals in the real world.
The hackers were able to attack "almost every version from iOS 10 through to the latest version of iOS 12," Beer said, though Apple patched the vulnerability in February after Beer and his associates at Google's Project Zero alerted the company to it. "This indicated a group making a sustained effort to hack the users of iPhones in certain communities over a period of at least two years." He did not speculate as to who was behind the attack or which groups it targeted, and he didn't name the hacked websites, saying only they were visited thousands of times a week. Apple told BBC News it did not wish to comment on Beer's post.
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
-
Today's political cartoons - February 1, 2025Cartoons Saturday's cartoons - broken eggs, contagious lies, and more
-
5 humorously unhealthy cartoons about RFK Jr.Cartoons Artists take on medical innovation, disease spreading, and more
-
Brodet (fish stew) recipeThe Week Recommends This hearty dish is best accompanied by a bowl of polenta
-
Chinese AI chatbot's rise slams US tech stocksSpeed Read The sudden popularity of a new AI chatbot from Chinese startup DeepSeek has sent U.S. tech stocks tumbling
-
US port strike averted with tentative labor dealSpeed Read The strike could have shut down major ports from Texas to Maine
-
Biden expected to block Japanese bid for US SteelSpeed Read The president is blocking the $14 billion acquisition of U.S. Steel by Japan's Nippon Steel, citing national security concerns
-
Judges block $25B Kroger-Albertsons mergerSpeed Read The proposed merger between the supermarket giants was stalled when judges overseeing two separate cases blocked the deal
-
Rupert Murdoch loses 'Succession' court battleSpeed Read Murdoch wanted to give full control of his empire to son Lachlan, ensuring Fox News' right-wing editorial slant
-
Bitcoin surges above $100k in post-election rallySpeed Read Investors are betting that the incoming Trump administration will embrace crypto
-
Enron mystery: 'sick joke' or serious revival?Speed Read 23 years after its bankruptcy filing, the Texas energy firm has announced its resurrection
-
US charges Indian tycoon with bribery, fraudSpeed Read Indian billionaire Gautam Adani has been indicted by US prosecutors for his role in a $265 million scheme to secure solar energy deals
