Warning for iPhone users: Here’s why downloading apps might be risky for some time
If you have updated your iPhone to the latest iOS 12.4 version, then it would be a good idea to exercise caution while downloading iOS apps from the App Store, warns researchers. This is because hackers have released a jailbreak for the latest iOS 12.4. The hacker was able to do so after Apple reintroduced a bug that was earlier there in iOS 12.3 with the latest update.
Last month, Google Project Zero security researchers had released details of several crucial security bugs in iOS 12.3. Apple had patched all the bugs with the release of iOS 12.3 except for one. This particular bug was also found by a Google security engineer named Ned Williamson. After Apple had patched the issue that was found by Williamson on May 13, the researcher revealed details of the bug publicly. It turns out that Apple rolled back the patch for this bug recently and hackers released a jailbreak taking advantage of this.
A hacker who goes by the name “Pwn20wnder” claimed that someone could create a spyware in the form of an iOS app that passes Apple’s sandbox and collects data from other apps that are installed on the iPhone. This is the reason as to why researchers are warning users to be careful about downloading random iOS apps.
As far as the other bugs are concerned that are patched by Apple now, Google researchers claimed that four of the bugs allowed experts to inject malicious code on an iOS device remotely without any user interaction. The attacker could do this by simply sending a malicious message to the iPhone and the code would get executed the moment the user open the message. The researchers claims that three of these bugs have been fixed, there is still one of them that is yet to be completely patched by Apple. The other two bugs allowed an attacker to gain access to the memory of the iOS device and leak data from it without any user interaction again.