Apple Mail which is the default email app on iPhones and iPads might be vulnerable to malware attacks. This is the claim that a security research firm – ZecOps has made.
ZecOps has briefed the Wall Street Journal that there is a vulnerability in the Mail app that allows attackers to infect your device with malware without your input. This means this malware can infect your device even if you don’t click a malicious link or download a file. It’s “virtually undetectable” for users, the security firm said.
Although the security researcher didn’t explain exactly how this malware will infect the device, they mentioned that it would involve sending a specially designed message. The worst thing they claimed that this exploit may have been in use for a while. ZecOps claimed that it has evidence that attackers had used the flaw for at least two years.
To be specific, there had been at least six targets, including staff at a Japanese telecom, a “large North American firm,” tech companies in Israel and Saudi Arabia, a German individual, and a European journalist.
However, the major problem is that the evidence is relatively difficult to find. ZecOps found its evidence through hints in iOS, and couldn’t obtain the malware as the messages had already been deleted. Jamf Software security researcher Patrick Wardle also told the WSJ that the evidence of ongoing attacks was “compelling,” but not authoritative.
Well, the investigators believe that Apple has fixed the flaw in an iOS beta (presumably 13.4.5), though, so it may not be an issue for long.
For the latest tech news and updates, Install TechCodex App, and follow us on Google News, Facebook, and Twitter. Also, if you like our efforts, consider sharing this story with your friends, this will encourage us to bring more exciting updates for you.