All iPhone users have been urged to update devices after a bug was discovered in Apple devices that allows cybercriminals to access their photos and messages.
Research published by cybersecurity company Trellix has revealed that the bug allowed cybercriminals to bypass iOS’ security protections, which in turn allows attackers to access your messages and photos from the iPhone.
Apple was quick to develop a fix and all users who updated their devices are now safe from any risks, however, privacy experts have urged those that haven’t to do so immediately. Here is everything you need to know.
READ MORE: Ireland 'Beast from the East' latest as Met Eireann reveals EXACT dates of 'impactful' cold snap
What was the bug?
Privacy expert, Christopher Bulvshtein, from VPNOverview, explained: “Apple has stringent restrictions around what software can run on devices. Android, as an alternative, allows third-party app downloads, which is why we commonly see more Android malware.
"Part of these security measures involves all apps being 'signed' by an Apple developer certificate. Apps are also limited in the actions they can perform, effectively being kept within their 'sandbox.'
"It makes it difficult for hackers to introduce malicious code that can exploit the operating system’s software, or to access other, unauthorized apps or services on the phone or computer.
"CVE-2023-23520 and CVE-2023-23531, as they’ve been titled, allow attackers to bypass this cryptographic signing process and run malicious code out of its ring-fenced security sandbox."
Bulvshtein also stressed that these are what are known as “zero-click” exploits meaning that victims of the cybercriminals don’t even need to click a link.
What personal information can be accessed?
According to Bulvshtein, an attacker could access sensitive information located elsewhere in your operating system, such as:
- Calendars, addresses, photos and videos, and stored files could all be at risk.
- Attackers could use this route to Install other malicious applications.
- Hackers could potentially even spy on users using their own audio or video capabilities.
How to protect your personal information?
He added that Apple users are advised to exercise the usual precautions for these vulnerabilities, for example:
- Only use trusted applications from the App Store. While you can’t install custom apps from elsewhere, there have been historical examples of apps gathering more data than they should or performing malicious actions.
- Don’t trust unknown devices when connecting your phone. Your iPhone will ask you whether to trust a computer when connecting via USB. Better yet, don’t connect your phone at all, unless it’s your own computer.
- Don’t click on links or even open messages from unknown senders if you don’t know who sent them and for what purpose. Just delete them.
READ NEXT:
Irish Tesco shoppers warned popular product may be ‘unsafe’ to eat
Gardai probing alleged knife murder get more time to quiz suspect
Brooke Scullion fined €300 after pet cat 'wrecked' Dublin apartment
Stepdad of missing Amy Fitzpatrick appears in court over alleged assault
David Beckham and son Cruz, 18, hit the pub again as they sink pints in Dublin
Get breaking news to your inbox by signing up to our newsletter
