Apple: There is “no evidence” that iPhone Mail vulnerabilities have been exploited in the wild

In context: Apple cultivates the image of a company that takes security and privacy very seriously, which is why it’s no surprise to see it downplaying every independent report that might suggest the software security protections on iPhone and iPad can’t keep hackers away 100 percent of the time.

Recently, news broke that the default Mail app on iOS has two severe vulnerabilities that have existed for eight years and make it easier for someone to get full control over your iPhone or iPad. The security research group that found them noted that there’s enough evidence to believe that hackers have been exploiting them for the past two years.

Apple has publicly acknowledged the existence of the two flaws, but is now trying to downplay their impact. The company strongly disagrees with the assessment that there’s any evidence about hackers using this against its customers, and noted that chaining the two vulnerabilities isn’t enough to bypass the security protections on iPhone and iPad.

The Cupertino giant told Bloomberg that after analyzing the ZecOps report, it performed an investigation into the proof of concept exploit, which they say is not enough to compromise an iPhone or iPad entirely. The company is still addressing the vulnerabilities in the iOS 13.4.5 update, which suggests that there’s at least some urgency to fixing the problem.

Apple: There is "no evidence" that iPhone Mail vulnerabilities have been exploited in the wild 1

The flaws themselves may not be enough to get full access to someone’s iPhone or iPad, but that says nothing of the possibility that hackers may be able to incorporate them into more complex attacks. Consider that the vulnerabilities have been present in every iOS release since iOS 6. ZecOps explained that it’s possible to use them in conjunction with an info leak bug as well as a kernel bug to achieve full control over the target device.

We’ve seen this kind of reaction before from Apple when they accused Google’s Project Zero of creating unfounded fears over a different iPhone vulnerability. This time, the iPhone maker has been less confrontational while still downplaying its impact in real-life scenarios.

Ironically enough, Jann Horn who is a Google Project Zero researcher, was one of several security researchers to question the findings in the ZecOps report. If you deal with mission critical information it still may be safer to avoid using Mail until the update to iOS 13.4.5 arrives.

About the author

E-Crypto News was developed to assist all cryptocurrency investors in developing profitable cryptocurrency portfolios through the provision of timely and much-needed information. Investments in cryptocurrency require a level of detail, sensitivity, and accuracy that isn’t required in any other market and as such, we’ve developed our databases to help fill in information gaps.

Related Posts

E-Crypto News Executive Interviews

Automated trading with HaasBot Crypto Trading Bots

Blockchain/Cryptocurrency Questions and Answers

How to Choose a Legit Crypto Casino?
August 5, 2022
Spend Crypto
5 Ways to Spend Crypto
August 2, 2022
What Is A DAO LLC?
What Is A DAO LLC?
August 2, 2022
Can Running A Lightning Node Earn You Passive Income?
Can Running A Lightning Node Earn You Passive Income?
July 5, 2022
Is The Crypto Market Combating A Lehman Brothers Moment?
June 30, 2022

CryptoCurrencyUSDChange 1hChange 24hChange 7d
Bitcoin23,882 0.42 % 2.32 % 2.15 %
Ethereum1,776.2 0.63 % 3.36 % 5.60 %
Tether1.002 0.08 % 0.01 % 0.03 %
USD Coin1.002 0.15 % 0.06 % 0.20 %
BNB325.02 1.06 % 0.55 % 14.48 %
XRP0.3821 0.14 % 1.34 % 0.30 %
Cardano0.5367 0.53 % 0.08 % 3.55 %
Binance USD1.001 0.05 % 0.00 % 0.04 %
Solana42.12 0.56 % 2.22 % 3.81 %
Polkadot9.250 0.63 % 4.95 % 6.65 %

Bitcoin (BTC) $ 24,078.00
Ethereum (ETH) $ 1,794.58
Tether (USDT) $ 1.00
USD Coin (USDC) $ 1.00
BNB (BNB) $ 329.33
XRP (XRP) $ 0.383528
Cardano (ADA) $ 0.541412
Binance USD (BUSD) $ 1.00
Solana (SOL) $ 43.10
Polkadot (DOT) $ 9.34