tech2 News StaffJul 31, 2019 08:19:31 IST
A duo of Google security researchers found six critical vulnerabilities with Apple's messaging app — iMessage — which they believe could potentially compromise a user's phone without them even interacting with the device. The researchers categories the exploits as “interactionless” vulnerabilities.
Fortunately, five of these six vulnerabilities have been patched with the iOS 12.4 update. The sixth vulnerability remains a secret until Apple patches them. To at least get the five of the exploits out of you iPhone, we strongly recommend you to upgrade to iOS 12.4 if you haven't already.
The research by Natalie Silvanovich and Samuel Groß, was first reported by ZDNet. The researchers said that four of the vulnerabilities in iMessage could lead to the execution of malicious code on remote iOS devices, without any significant user interaction. Which means all an attacker had to do was to deliver an infectious message and entice you to view it.
The other two vulnerabilities are apparently memory exploits.
The news of the vulnerabilities in iMessage comes amid Apple dealing with a privacy controversy, wherein some contractors have been eavesdropping via Siri without the knowledge of the users. Apple has acknowledged that this is done for the process of quality control or "grading", however, this has raised concerns because Apple has been doing this without the consent of the users and the data is apparently being sent over to the contractors even when Siri is not activated.
Find latest and upcoming tech gadgets online on Tech2 Gadgets. Get technology news, gadgets reviews & ratings. Popular gadgets including laptop, tablet and mobile specifications, features, prices, comparison.