Thursday, October 22, 2020
Home Lead Story Malicious Websites put iPhones Users at Hacking Risk: Google

Malicious Websites put iPhones Users at Hacking Risk: Google

Apple was yet to issue a comment on Google’s blog post

In one of the biggest attacks against iPhone users, Google security researchers have discovered several hacked websites that used security flaws in iPhones to attack users who visited these websites.

In a blog post, researchers working in Google’s Project Zero team said that after they reported their findings to Apple, the Cupertino-based tech giant patched the vulnerabilities.

The malicious websites may have compromised personal files, messages, and real time location data of iPhone users.

“Earlier this year, Google’s Threat Analysis Group (TAG) discovered a small collection of hacked websites. The hacked sites were being used in indiscriminate watering hole attacks against their visitors, using iPhone 0-day,” said Ian Beer, Project Zero.

There was no target discrimination as simply visiting the hacked site was enough for the exploit server to attack the iPhone, and if it was successful, install a monitoring implant.

“We estimate that these sites receive thousands of visitors per week,” said the Google blog post.

Smartphones
iPhones on display at an Apple store in Virginia, USA, April 4, 2016. VOA

The researchers were able to collect five separate, complete and unique iPhone exploit chains, covering almost every version from iOS 10 through to the latest version of iOS 12.

“This indicated a group making a sustained effort to hack the users of iPhones in certain communities over a period of at least two years,” said Beer.

“I will not get into a discussion of whether these exploits cost $1 million, $2 million, or $20 million. I will instead suggest that all of those price tags seem low for the capability to target and monitor the private activities of entire populations in real time,” the researcher noted.

Also Read: US Lawmakers Ask Jeff Bezos to Stop Sale of ‘Deadly Stuff’ on Amazon

The websites delivered their malware indiscriminately and were operational for years, said Google.

Apple was yet to issue a comment on Google’s blog post. (IANS)

STAY CONNECTED

19,120FansLike
362FollowersFollow
1,782FollowersFollow

Most Popular

9 Traditional Indian Folk Theatre Forms that You Need to Know

BY NEHA HEGDE The folk or traditional arts of India have been used for moral, religious, and socio-political purposes from ancient times. It must also...

COVID-19 Can Lead to Infertility in Men, says Study

COVID-19 can cause male infertility by harming the testicular cells which produce sperms thereby making it difficult to make the female pregnant, says a...

Fashion Trends to Look Your Best in this Festive Season

It's a time to pause, to relook, to rethink - It's the time to revive the spirits. This year festivities will not be like...

Perfect Hairstyle Tips for the Festive Celebrations

It's Durga Puja time! It's the most awaited period of the year for many of us. And if you are among the ones who...

Proper Ventilation Key Factor to Prevent COVID Spread

New research adds to the growing body of evidence that effective or proper indoor ventilation may be a key factor in preventing the spread...

The 21-Day Immunity Plan To Follow: Book Review

With 80 percent of chronic disease attributable to lifestyle and linked environmental factors and within the lifestyle hierarchy, poor diet being the most important...

Tattoos May Impair Natural Sweating and Cause Overheat of Body

Researchers have found that tattoos may impair natural sweating, potentially causing the body to overheat if the tattoos cover a large area of the...

Amazon Allowing Work From Home Untill June 2021

Amazon is allowing its corporate employees to avail of the work from home option, if their roles permit, till June 2021. Amazon had earlier said...

Recent Comments