Google researchers found 6 iMessage exploits that could compromise your iPhone
A duo of Google security researchers found six critical vulnerabilities with Apple’s messaging app — iMessage — which they believe could potentially compromise a user’s phone without them even interacting with the device. The researchers categories the exploits as “interactionless” vulnerabilities.
Fortunately, five of these six vulnerabilities have been patched with the iOS 12.4 update. The sixth vulnerability remains a secret until Apple patches them. To at least get the five of the exploits out of you iPhone, we strongly recommend you to upgrade to iOS 12.4 if you haven’t already.
The research by Natalie Silvanovich and Samuel Groß, was first reported by ZDNet. The researchers said that four of the vulnerabilities in iMessage could lead to the execution of malicious code on remote iOS devices, without any significant user interaction. Which means all an attacker had to do was to deliver an infectious message and entice you to view it.
The other two vulnerabilities are apparently memory exploits.
You can read more about the five exploits here.
Further, The Next Web found a report by security firm Zerodium, which suggests that the five of the exploits are valued at $1 million each.
The news of the vulnerabilities in iMessage comes amid Apple dealing with a privacy controversy, wherein some contractors have been eavesdropping via Siri without the knowledge of the users. Apple has acknowledged that this is done for the process of quality control or “grading”, however, this has raised concerns because Apple has been doing this without the consent of the users and the data is apparently being sent over to the contractors even when Siri is not activated.
Find our entire collection of stories, in-depth analysis, live updates, videos & more on Chandrayaan 2 Moon Mission on our dedicated #Chandrayaan2TheMoon domain.