For at least two years, hackers used compromised websites to install malware on iPhones that could gather and upload a user's photos, contacts, and other data, Google cybersecurity researcher Ian Beer explained in a blog post Thursday evening. "There was no target discrimination: Simply visiting the hacked site was enough for the exploit server to attack your device, and if it was successful, to install a monitoring implant." The exploits were discovered "in the wild," Beer said, meaning they were being used by real cybercriminals in the real world.
The hackers were able to attack "almost every version from iOS 10 through to the latest version of iOS 12," Beer said, though Apple patched the vulnerability in February after Beer and his associates at Google's Project Zero alerted the company to it. "This indicated a group making a sustained effort to hack the users of iPhones in certain communities over a period of at least two years." He did not speculate as to who was behind the attack or which groups it targeted, and he didn't name the hacked websites, saying only they were visited thousands of times a week. Apple told BBC News it did not wish to comment on Beer's post.
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
Create an account with the same email registered to your subscription to unlock access.
-
Empty-nest boomers aren't selling their big homesSpeed Read Most Americans 60 and older do not intend to move, according to a recent survey
-
Brazil accuses Musk of 'disinformation campaign'Speed Read A Brazilian Supreme Court judge has opened an inquiry into Elon Musk and X
-
Disney board fends off Peltz infiltration bidSpeed Read Disney CEO Bob Iger has defeated activist investor Nelson Peltz in a contentious proxy battle
-
Disney and DeSantis reach detenteSpeed Read The Florida governor and Disney settle a yearslong litigation over control of the tourism district
-
Visa and Mastercard agree to lower swipe feesSpeed Read The companies will cap the fees they charge businesses when customers use their credit cards
-
Reddit IPO values social media site at $6.4 billionSpeed Read The company makes its public debut on the New York Stock Exchange
-
Housing costs: the root of US economic malaise?speed read Many voters are troubled by the housing affordability crisis
-
Feds cap credit card late fees at $8speed read The Consumer Financial Protection Bureau finalized a rule to save households an estimated $10 billion a year
