In what's being touted as potentially one of the biggest attacks on eroticism psychologyiPhone users ever, Google has revealed that a collection of websites were hacked to deliver malware onto iPhones, with the iOS vulnerabilities involved going unchecked and undiscovered for years -- as well as subsequent attacks.
The hacks installed zero-interaction malware into unnamed sites that received thousands of visitors every week. Simply visiting the sites, without clicking or scrolling at all, could deliver a monitoring implant onto users' iPhones.
Google demonstrated that the implant could "steal private data like iMessages, photos and GPS location in real-time"; it also had access to users' keychains and password data, as well as database files containing plaintext of messages sent and received in messaging apps such as Google Hangouts, and even end-to-end encrypted apps including WhatsApp, iMessage, and Telegram.
The malware would be wiped if the iPhone was rebooted, but any sensitive information obtained during the infection could still leave the device, its user, and their online life vulnerable to attack.
SEE ALSO: Apple will announce new 'iPhone 11' and 'iPhone 11 Pro' on September 10While the choice of sites appeared designed to target certain communities, the attack was otherwise indiscriminate.
Google's security research initiative Project Zero posted a "very deep dive" detailing the exploits, which their Threat Analysis Group discovered and disclosed to Apple in Feb. 2019.
The team found five "separate, complete and unique" exploit chains using 14 vulnerabilities. Several were zero-day, meaning Apple was unaware of them at the time of Project Zero's discovery; Apple patched these within the seven-day deadline Google gave in iOS 12.1.4, the same Feb. 7 update that patched the infamous Group FaceTime vulnerability.
The exploits date back to iOS 10 and through updates of iOS 12.1.2, encompassing "almost every version" in that timeframe.
This Tweet is currently unavailable. It might be loading or has been removed.
The number of Apple exploits discovered appears to have risen sharply over the past year. At the end of July, Project Zero revealed six zero-interaction security bugs that could be exploited through iMessage, only five of which Apple had managed to patch by the time the Google team revealed them. And in August, news broke of the SQLite vulnerability, as demonstrated at DEFCON 2019 using the iOS Contacts app, as well as the vulnerability to the Bluetooth-based "KNOB" attack that affected every iPhone and iPad.
Mashable has contacted Apple for comment.
Topics Cybersecurity
Best laptop deal: Save $390.99 on the Lenovo IdeaPad 3i
Temu goes live in South Africa, expanding its presence to six continents · TechNode
ByteDance to reduce stock in e
Temu launches new legal fight against Shein in the US · TechNode
How I met my partner on X/Twitter
NIO vehicle margin rebounds in Q3 as CEO keeps pricing stable · TechNode
WeChat sees 300% jump in GMV from Channels livestreaming in 2023 · TechNode
CCTV unveils mascot for Year of the Dragon Spring Festival Gala · TechNode
The Ultrahuman Ring Air now comes in 18K gold – for a steep price
China raises threshold on tax
Best Apple Pencil Pro deal: Save $30 at Best Buy
ByteDance accelerates vesting schedule to quarterly for staff · TechNode
Tesla exports materials from China for 4680 battery production in Texas: report · TechNode
Stellantis
Miami Heat vs. Los Angeles Lakers 2025 livestream: Watch NBA online
Xiaomi set to display first EV at stores in Q1 · TechNode
Stellantis
Douyin releases first fine
Did Elon Musk push former FAA leader out? Trump admin responds after deadly plane crash
Huawei releases smart driving app HIMA · TechNode
What We’re Loving: Myth, Legend, Umlauts by The Paris ReviewCrossroads of the (Art) World by John ReedMemoir of Memoir of a Gambler by Lary WallaceAusten Takes Brooklyn by Sadie SteinEdward Lear’s Cat by Sadie SteinMarilyn’s Books, Hemingway’s Vacation by Sadie SteinObject Lesson: Classics by The Paris ReviewBoo! And Other Ways to Scare Kids by Sadie SteinMimes, Tattoos, and Whales by Sadie SteinNever Fear! Your Mugs are Coming! by The Paris ReviewCrumb on Bukowski, Rushdie on James by Sadie SteinMeeting Joan Didion by Lucy McKeon“The Lottery”: PGHow to Live with an Idiot by Sadie SteinWhat We’re Doing Tonight: TPR at Greenlight Books! by Sadie SteinThe Modern Monastery: Pussy Riot in Prison by Casey N. CepWill Oldham on Bonnie “Prince” Billy by Alan LichtIn Search of Lost Time by Anna WienerBut What Is He Reading? by Sadie SteinFinnegans Wake: An Illustrated Panorama by Jason Novak I've got a gut feeling: Harnessing the power of intuition 'Call of Duty: WWII' won't ignore the Holocaust anymore Apple launches global in Beyoncé launches scholarship to celebrate anniversary of 'Lemonade' United is in trouble yet again after giant rabbit dies on flight Samantha Bee's 'Not the White House Correspondents Dinner' to air on Twitter MLB player leaps over catcher to score acrobatic 'Major League II' style run Watch: Powerful Maori haka spreads support for veteran's mental health Dear Topshop, stop trying to make clear plastic jeans happen. Love, the internet. Jeff Goldblum's handing out free sausages in a 'Chef Goldblum's' truck Turns out Serena Williams' pregnancy announcement was all an accident OMG Jeff Goldblum will return in 'Jurassic World' sequel Uber holds first Elevate Summit to further its plan for flying taxis At F8, Facebook failed to convince publishers they actually care about them Facebook tries to pop your media bubble with new related articles feature Here are some good cats and dogs who are working their summer haircuts Sofia Vergara will probably not have a career in bull riding. At least on inflatable ones. These green juice gummies are the GOOP of candy The Women's March just won a PEN award for freedom of speech Twitter, for once, is soaring and says it's seeing less abuse on site
0.7827s , 8288.25 kb
Copyright © 2025 Powered by 【eroticism psychology】,Inspiration Information Network