Serious vulnerability found in Mail on iPhone

San Francisco-based ZecOps specializing in cyber threat research, discovered a security hole in iPhone. Experts have found that you can infect iOS through the standard Mail program.

ZecOps Report states that for a successful hack, an attacker only needs to send a specially prepared email to the victim's address. If it is opened in iOS Mail, the attacked iPhone will execute any received code. So a hacker can steal valuable data from the owner of the smartphone.

The vulnerability has been around for almost 8 years, since iOS 6 was released in 2012. And it still hasn't been fixed.

To run malicious code on iOS 12, the user must click on the Mail icon. In iOS 13, the sent malware can work even if Mail is just running in the background.

At least six major targets have already been hacked - including the head of one of the mobile operators in Japan, owner of a large Swiss enterprise and several Fortune 500 members in North America. In addition, ZecOps has observed multiple spontaneous attacks by cybercriminals using this exploit since January 2018, back to iOS 11.2.2.

Apple has so far refrained from comment. According to ZecOps representatives, the Cupertinos have already fixed the vulnerability in the latest beta version of iOS. The update is expected to roll out to all users in the coming weeks.

You can upgrade to beta now, registering on the Apple website. If this is not possible, it is best to stop using iPhone Mail for now and log out of all your accounts in it. Install Gmail or Outlook and use them. There is no vulnerability in these clients.

DownloadQR-Code

Gmail - mail from Google

Developer: Google LLC

Price: Free

DownloadQR-Code

Microsoft Outlook

Developer: Microsoft Corporation

Price: Free