Apple has refuted claims made by the cybersecurity firm ZecOps recently that hackers were able to exploit an iOS vulnerability. The security company had said that the loophole could allow attackers to read, edit, and delete emails on the default Mail app on iPads and iPhones.
Additionally, it had also identified some high-profile individuals that it believes were targeted. Although Apple acknowledges the existence of the iOS bug, it says it has found no evidence that it was used against iPhone users.
The identified iOS bug is not enough to bypass security protections according to Apple
The company asserts that the said vulnerability alone is not sufficient to enable cybercriminals to bypass security. ZecOps, on the other hand, had said that a specially crafted email sent by attackers is enough to exhaust the RAM of a device, letting them break out of protections that exist to prevent the proprietary Mail app from executing malicious code.
Apple says it has investigated ZecOps’s report thoroughly and come to the conclusion that the bug does not pose an immediate risk to its customers. The company will patch the problem soon in an update. The issue has already been fixed in the iOS 13.4.5 beta.
If you want to be on the safe side until the issue is resolved, it might be a good idea to disable the Mail app temporarily. That’s because even though Apple claims its customers were not targeted using the vulnerability in question, ZecOps had said it could be used in conjunction with other loopholes such as a kernel vulnerability to gain full device access. The security firm has already warned that the attackers seemingly involved in email exploits have also discovered another vulnerability. This is currently being investigated, so we can't say if this particular vulnerability is also being used by attackers.
An image from ZecOps describing the iOS Mail vulnerability
Create a free account and join our vibrant community
Register to enjoy the full PhoneArena experience. Here’s what you get with your PhoneArena account:
Anam Hamid is a computer scientist turned tech journalist who has a keen interest in the tech world, with a particular focus on smartphones and tablets. She has previously written for Android Headlines and has also been a ghostwriter for several tech and car publications. Anam is not a tech hoarder and believes in using her gadgets for as long as possible. She is concerned about smartphone addiction and its impact on future generations, but she also appreciates the convenience that phones have brought into our lives. Anam is excited about technological advancements like folding screens and under-display sensors, and she often wonders about the future of technology. She values the overall experience of a device more than its individual specs and admires companies that deliver durable, high-quality products. In her free time, Anam enjoys reading, scrolling through Reddit and Instagram, and occasionally refreshing her programming skills through tutorials.
Recommended Stories
Loading Comments...
COMMENT
All comments need to comply with our
Community Guidelines
Phonearena comments rules
A discussion is a place, where people can voice their opinion, no matter if it
is positive, neutral or negative. However, when posting, one must stay true to the topic, and not just share some
random thoughts, which are not directly related to the matter.
Things that are NOT allowed:
Off-topic talk - you must stick to the subject of discussion
Offensive, hate speech - if you want to say something, say it politely
Spam/Advertisements - these posts are deleted
Multiple accounts - one person can have only one account
Impersonations and offensive nicknames - these accounts get banned
Moderation is done by humans. We try to be as objective as possible and moderate with zero bias. If you think a
post should be moderated - please, report it.
Have a question about the rules or why you have been moderated/limited/banned? Please,
contact us.
FCC OKs Cingular\'s purchase of AT&T Wireless
Things that are NOT allowed: