Sunday September 15, 2019
Home Lead Story iPhone Bug al...

iPhone Bug also Accessed WhatsApp, Telegram Chats, Identify Google Researchers

“We estimate that these sites receive thousands of visitors per week,” said the Google blog post

0
//
google, online tracking
A man walks past a Google sign outside with a span of the Bay Bridge at rear in San Francisco, May 1, 2019. VOA

Google researchers have identified a vulnerability that accessed all the database files on the victim’s iPhone used by end-to-end encryption apps like WhatsApp, Telegram and iMessage.

In one of the biggest attacks against iPhone users, researchers working in Google’s Project Zero team earlier discovered several hacked websites that used security flaws in iPhones to attack users who visited these websites.

The malicious websites may have compromised personal files, messages, and real time location data of iPhone users. After they reported their findings to Apple, the Cupertino-based tech giant patched the vulnerabilities.

Later, they also revealed that the users’ chats in WhatsApp and Telegram were also compromised.

“In the earlier posts, we examined how the attackers gained ‘unsandboxed’ code execution as root on iPhones.”

“The implant has access to all the database files (on the victim’s phone) used by popular end-to-end encryption apps like WhatsApp, Telegram and iMessage,” said Ian Beer from Google’s Project Zero.

The implant was primarily focused on stealing files and uploading live location data.

whatsapp, paytm, UPI-based Pay service
FILE – The WhatsApp app logo is seen on a smartphone in this picture illustration. VOA

“The implant can upload private files used by all apps on the device,” said the researchers.

The researchers were able to collect five separate, complete and unique iPhone exploit chains, covering almost every version from iOS 10 through to the latest version of iOS 12.

“This indicated a group making a sustained effort to hack the users of iPhones in certain communities over a period of at least two years,” said Beer.

The websites delivered their malware indiscriminately and were operational for years, said Google.

Also Read: RBI Extends the Deadline to Update KYC for PhonePe, Paytm

“Earlier this year, Google’s Threat Analysis Group (TAG) discovered a small collection of hacked websites. The hacked sites were being used in indiscriminate watering hole attacks against their visitors, using iPhone 0-day,” said Beer.

There was no target discrimination as simply visiting the hacked site was enough for the exploit server to attack the iPhone, and if it was successful, install a monitoring implant.

“We estimate that these sites receive thousands of visitors per week,” said the Google blog post. (IANS)

Next Story

Google Pixel 4XL To Have A Brighter Camera

Google Pixel fans can expect a brighter camera and beefed up processing power in the upcoming Pixel 4 XL, according to new leaked images of a pre-release Pixel 4 XL provided by Vietnamese phone shop D Store Mobile

0
Google, Pixel, Smartphone, Camera
Google Pixel XL smartphone. Wikimedia Commons

Google Pixel fans can expect a brighter camera and beefed up processing power in the upcoming Pixel 4 XL, according to new leaked images of a pre-release Pixel 4 XL provided by Vietnamese phone shop D Store Mobile, the media reported.

The primary rear camera will reportedly snap shots with a brighter f/1.73 aperture. Last year’s Pixel 3 had an aperture of f/1.8.

“Leaks of the upcoming camera app suggest that the phone will shoot in 16:9 by default so that photos can take up the entire camera screen, despite the sensor remaining 4:3. The effect is similar to what Apple is doing on the iPhone 11 models, which take advantage of the phone’s extra wide-angle lens to fill the screen,” The Verge reported on Saturday.

Google, Pixel, Smartphone, Camera
New leaked images of a pre-release Pixel 4 XL provided by Vietnamese phone shop D Store Mobile. Pixabay

The details of the telephoto camera aren’t available as of now but it can be safely presumed there would be significant improvements to low-light photos and close-ups.

ALSO READ: Biocon to Make Three Generic Drugs for Hard-Selling in China

The speedy 90Hz OLED screen remains the highlight, but one will also get a Snapdragon 855 processor with 6GB RAM, a 3,700mAh battery (on the XL) and 128GB of UFS storage on at least one model, according to Engadget. (IANS)