[ad_1]
Two Google security researchers, known as Project Zero, discovered in the Apple iOS operating system six potentially serious bugs that can be exploited through the iMessage e-mail service.
He writes the ZDnet site.
According to security experts, users can take advantage of four of the six vulnerabilities to run malicious code on an iOS device, without physically owning the iPhone or the iPad. The attacker only has to send a special message to the device. The malicious code will automatically execute when the recipient opens the message.
The other two holes allow an attacker to extract data from the device's memory, thus reading files on a separate device. This weakness can also be exploited without the attacker having the device physically.
Good to update
Project Zero staff published details proving that it was possible to exploit the weaknesses. At a security conference, he will further explain the methods used by the attackers.
All security breaches were filled in the iOS update for iPhone and iPad that became available last week, but one has not been fully corrected. As a result, Google's security researchers have not disclosed the details of this operation.
Even though it is unlikely that these methods will be attacked, it is nevertheless wise to remain cautious in updating their device to iOS 12.4.
You can update your device by opening the settings, choosing General, Update, and then searching for a new update.
[ad_2]
Source link
