The company is warning of an unusual vulnerability right now, that can allows a hacker to get into your phone with an infected email or message.
Advertisement
On a Mac, click the Apple icon and select the App Store. The vulnerability can be exploited by cyber criminals for arbitrary code execution by sending the targeted user a specially crafted image file which triggers a heap-based buffer overflow. That’s due to the fact that the responsibility of issuing bug fixes often falls to the smartphone maker and carrier, which they don’t always issue for older or less “premium” devices, of which there are many. It found that a vulnerability in Apple’s Image I/O API system allows the way that a certain TIFF file, a kind of image, is rendered to be hijacked. That means any app on your phone that uses the Image I/O API system could be at risk – Messages, Mail, Safari, et cetera, the Guardian reported.
The security experts warned that in some cases the exploit might not require any user interaction as some applications render images automatically when received.
Currently, the vulnerability is considered as a serious threat due to the large number of affected devices and the wide range of potential attack vectors.
With this vulnerability, hackers can get into your iPhone or Mac and steal passwords and other personal information stored on the device without your knowledge.
Apple has released iOS 9.3.3 to squash the bug., and the Talos advice is to upgrade as soon as possible. The story is the same for those using Mac, with the updated version being OS X 10.11.6.
iOS 9, was launched during Apple WWDC on June 8, 2015 in San Francisco, California. As Apple patched it, there are no such dangers roaming free, at least for now, if you have the latest update installed.
There is a bigger problem for those using iPhone 4 and below.
Advertisement
Find out how you can stop your iOS 10 from collecting data you may not want it to.
