Flaw in iPhone, iPads may have allowed hackers to steal data for years
Skip to main content
  • Home
  • Economy
    • Aviation
    • Bazaar
    • Budget
    • Industry
    • NBR
    • RMG
    • Corporates
  • Stocks
  • Analysis
  • World+Biz
  • Sports
  • Features
    • Book Review
    • Brands
    • Earth
    • Explorer
    • Fact Check
    • Family
    • Food
    • Game Reviews
    • Good Practices
    • Habitat
    • Humour
    • In Focus
    • Luxury
    • Mode
    • Panorama
    • Pursuit
    • Wealth
    • Wellbeing
    • Wheels
  • Epaper
  • More
    • Subscribe
    • Videos
    • Thoughts
    • Splash
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • COVID-19
    • Games
    • Long Read
    • Interviews
    • Offbeat
    • Podcast
    • Quiz
    • Tech
    • Trial By Trivia
    • Magazine
  • বাংলা
The Business Standard

Wednesday
February 01, 2023

Sign In
Subscribe
  • Home
  • Economy
    • Aviation
    • Bazaar
    • Budget
    • Industry
    • NBR
    • RMG
    • Corporates
  • Stocks
  • Analysis
  • World+Biz
  • Sports
  • Features
    • Book Review
    • Brands
    • Earth
    • Explorer
    • Fact Check
    • Family
    • Food
    • Game Reviews
    • Good Practices
    • Habitat
    • Humour
    • In Focus
    • Luxury
    • Mode
    • Panorama
    • Pursuit
    • Wealth
    • Wellbeing
    • Wheels
  • Epaper
  • More
    • Subscribe
    • Videos
    • Thoughts
    • Splash
    • Bangladesh
    • Supplement
    • Infograph
    • Archive
    • COVID-19
    • Games
    • Long Read
    • Interviews
    • Offbeat
    • Podcast
    • Quiz
    • Tech
    • Trial By Trivia
    • Magazine
  • বাংলা
WEDNESDAY, FEBRUARY 01, 2023
Flaw in iPhone, iPads may have allowed hackers to steal data for years

Tech

Reuters
23 April, 2020, 12:30 pm
Last modified: 23 April, 2020, 12:47 pm

Related News

  • Apple CEO Tim Cook to take a more than 40% pay cut
  • Apple resumes Twitter advertising? Here’s what Elon Musk said days after spat
  • Apple renames mixed-reality software ‘xrOS’ in sign headset is approaching
  • Huge Foxconn iPhone plant in China rocked by fresh worker unrest
  • Apple warns of hit to iPhone shipments from China Covid disruption

Flaw in iPhone, iPads may have allowed hackers to steal data for years

An Apple spokesman acknowledged that a vulnerability exists in Apple’s software for email on iPhones and iPads, known as the Mail app, and that the company had developed a fix, which will be rolled out in a forthcoming update on millions of devices it has sold globally

Reuters
23 April, 2020, 12:30 pm
Last modified: 23 April, 2020, 12:47 pm
CEO Tim Cook presents the new iPhone 11 at an Apple event at their headquarters in Cupertino, California, US September 10, 2019/Reuters
CEO Tim Cook presents the new iPhone 11 at an Apple event at their headquarters in Cupertino, California, US September 10, 2019/Reuters

Apple Inc is planning to fix a flaw that a security firm said may have left more than half a billion iPhones vulnerable to hackers.

The bug, which also exists on iPads, was discovered by ZecOps, a San Francisco-based mobile security forensics company, while it was investigating a sophisticated cyberattack against a client that took place in late 2019. Zuk Avraham, ZecOps' chief executive, said he found evidence the vulnerability was exploited in at least six cybersecurity break-ins.

An Apple spokesman acknowledged that a vulnerability exists in Apple's software for email on iPhones and iPads, known as the Mail app, and that the company had developed a fix, which will be rolled out in a forthcoming update on millions of devices it has sold globally.

Apple declined to comment on Avraham's research, which was published on Wednesday, that suggests the flaw could be triggered from afar and that it had already been exploited by hackers against high-profile users.

Avraham said he found evidence that a malicious program was taking advantage of the vulnerability in Apple's iOS mobile operating system as far back as January 2018. He could not determine who the hackers were and Reuters was unable to independently verify his claim.

To execute the hack, Avraham said victims would be sent an apparently blank email message through the Mail app forcing a crash and reset. The crash opened the door for hackers to steal other data on the device, such as photos and contact details.

ZecOps claims the vulnerability allowed hackers to remotely steal data off iPhones even if they were running recent versions of iOS. By itself, the flaw could have given access to whatever the Mail app had access to, including confidential messages.

Avraham, a former Israeli Defense Force security researcher, said he suspected that the hacking technique was part of a chain of malicious programs, the rest undiscovered, which could have given an attacker full remote access. Apple declined to comment on that prospect.

ZecOps found the Mail app hacking technique was used against a client last year. Avraham described the targeted client as a "Fortune 500 North American technology company," but declined to name it. They also found evidence of related attacks against employees of five other companies in Japan, Germany, Saudi Arabia, and Israel.

Avraham based most of his conclusions on data from "crash reports," which are generated when programs fail in mid-task on a device. He was then able to recreate a technique that caused the controlled crashes.

Two independent security researchers who reviewed ZecOps' discovery found the evidence credible, but said they had not yet fully recreated its findings.

Patrick Wardle, an Apple security expert and former researcher for the U.S. National Security Agency, said the discovery "confirms what has always been somewhat of a rather badly kept secret: that well-resourced adversaries can remotely and silently infect fully patched iOS devices."

Because Apple was not aware of the software bug until recently, it could have been very valuable to governments and contractors offering hacking services. Exploit programs that work without warning against an up-to-date phone can be worth more than $1 million.

While Apple is largely viewed within the cybersecurity industry as having a high standard for digital security, any successful hacking technique against the iPhone could affect millions due to the device's global popularity. In 2019, Apple said there were about 900 million iPhones in active use.

Bill Marczak, a security researcher with Citizen Lab, a Canada-based academic security research group, called the vulnerability discovery "scary."

"A lot of times, you can take comfort from the fact that hacking is preventable," said Marczak. "With this bug, it doesn't matter if you've got a PhD in cybersecurity, this will eat your lunch."
 

Top News

Apple / iPhone

Comments

While most comments will be posted if they are on-topic and not abusive, moderation decisions are subjective. Published comments are readers’ own views and The Business Standard does not endorse any of the readers’ comments.

Top Stories

  • Will reform pledges to IMF work this time?
    Will reform pledges to IMF work this time?
  • Infographic: TBS
    How to redirect inward remittances to formal channels
  • Photo: TBS
    By-polls in BNP MPs' vacant seats: Few voters in B'baria polling centres, clash in Chapainawabganj

MOST VIEWED

  • Rendered images by DALL-E 2 from the text prompt: “a hydrogen fueled plane, digital art.”
    Could hydrogen-powered aeroplanes be the future of aviation?
  • Illustration: TBS
    AI tools beyond ChatGPT and DALL-E 2
  • Twitter says users will be able to appeal account suspension
    Twitter says users will be able to appeal account suspension
  • Bye bye! Photographer: Michael Zarrilli/Getty Images North America via Bloomberg
    Meta says Trump to be allowed back on Facebook, Instagram
  • A view of the Twitter logo at its corporate headquarters in San Francisco, California, U.S. November 18, 2022. REUTERS/Carlos Barria
    Twitter faces legal complaint in Germany over anti-Semitic content
  • Silhouettes of laptop and mobile device users are seen next to a screen projection of Microsoft logo in this picture illustration taken March 28, 2018. REUTERS/Dado Ruvic/Illustration/File Photo
    Microsoft cloud outage hits users around the world

Related News

  • Apple CEO Tim Cook to take a more than 40% pay cut
  • Apple resumes Twitter advertising? Here’s what Elon Musk said days after spat
  • Apple renames mixed-reality software ‘xrOS’ in sign headset is approaching
  • Huge Foxconn iPhone plant in China rocked by fresh worker unrest
  • Apple warns of hit to iPhone shipments from China Covid disruption

Features

An elderly couple's lonely battle to save Dhaka's trees

An elderly couple's lonely battle to save Dhaka's trees

2h | Panorama
Infographic: TBS

How to redirect inward remittances to formal channels

3h | Panorama
Photo: Bloomberg

How the 'madoffs of Manhattan' can unravel Gautam Adani's empire

2h | Panorama
Photo: Collected

Tips to incorporate sustainable construction

1d | Habitat

More Videos from TBS

Alka Yagnik guinness world record

Alka Yagnik guinness world record

50m | TBS Entertainment
Interest rate should be left to market

Interest rate should be left to market

55m | TBS Round Table
Adani’s shares fell sharply after allegation

Adani’s shares fell sharply after allegation

16h | TBS World
Why Messi was blocked on Instagram?

Why Messi was blocked on Instagram?

15h | TBS SPORTS

Most Read

1
Bapex calls candidates for job test 9 years after advert!
Bangladesh

Bapex calls candidates for job test 9 years after advert!

2
Photo: Collected
Energy

8 Ctg power plants out of production

3
Photo: Saqlain Rizve
Bangladesh

Bangladeshi university students identified as problematic users of Facebook, internet: Study

4
Photo: Collected
Court

Japanese mother gets guardianship of daughters, free to leave country

5
Fund cut as Dhaka's fast-track transit projects on slow spending lane
Infrastructure

Fund cut as Dhaka's fast-track transit projects on slow spending lane

6
The International Monetary Fund (IMF) logo is seen outside the headquarters building in Washington, U.S., September 4, 2018. REUTERS/Yuri Gripas/File Photo
Economy

IMF approves $4.7 billion loan for Bangladesh, calls for ambitious reforms

EMAIL US
[email protected]
FOLLOW US
WHATSAPP
+880 1847416158
The Business Standard
  • About Us
  • Contact us
  • Sitemap
  • Privacy Policy
  • Comment Policy
Copyright © 2023
The Business Standard All rights reserved
Technical Partner: RSI Lab

Contact Us

The Business Standard

Main Office -4/A, Eskaton Garden, Dhaka- 1000

Phone: +8801847 416158 - 59

Send Opinion articles to - [email protected]

For advertisement- [email protected]