News
Google reveals 2-year long ‘indiscriminate’ iPhone hack
Google security experts have uncovered an “indiscriminate” hacking operation that targeted iPhones over a period of at least two years, and used websites to implant malicious software to access photos, users’ locations and other data.
According to a blog post by Project Zero’s Ian Beer, Google’s Threat Analysis Group (TAG) discovered some “sustained effort” to launch attacks against iPhone users through hacked websites.
The hackers used an exploit server; these compromised sites would then drop a malicious implant to iPhone devices when visited. Once installed, the malware would collect private information including contacts, photos, and other data of the owner (via BBC).
READ ALSO: US court indicts suspected Capital One hacker on wire fraud, data theft charges
Beer noted that there were thousands of visitors to these websites on a weekly basis. The attacks were limited only to certain communities and lasted for at least two years, with no target discrimination, according to Beer.
Based on five distinct exploit chains found by Google, it was revealed that the security flaws affected iOS 10 through to iOS 12. Beer went on to explain:
“Working with TAG, we discovered exploits for a total of fourteen vulnerabilities across the five exploit chains: seven for the iPhone’s web browser, five for the kernel and two separate sandbox escapes. Initial analysis indicated that at least one of the privilege escalation chains was still 0-day and unpatched at the time of discovery (CVE-2019-7287 & CVE-2019-7286).”
Join the conversation
Support Ripples Nigeria, hold up solutions journalism
Balanced, fearless journalism driven by data comes at huge financial costs.
As a media platform, we hold leadership accountable and will not trade the right to press freedom and free speech for a piece of cake.
If you like what we do, and are ready to uphold solutions journalism, kindly donate to the Ripples Nigeria cause.
Your support would help to ensure that citizens and institutions continue to have free access to credible and reliable information for societal development.
German Police bust alleged Nigerian scam dating ring
German authorities have arrested eleven individuals suspected of being members of a Nigerian mafia group involved in a large-scale dating...
INVESTIGATION: In Kwara, multimillion-naira milk processing plant is abandoned, converted to a chicken outlet
After the government spent millions of naira to establish a milk processing plant in Kwara State that would provided jobs...
SPECIAL REPORT: For Sokoto communities, promise of healthcare is akin to death sentence
In this story, ABDULRASHEED HAMMAD delves into the dire realities of Primary Health Care services in Sokoto State, shedding light...
ICYMI…SPECIAL REPORT: NNPCL hides behind PIA to frustrate disclosure, accountability
Nigeria’s major oil company, Nigerian National Petroleum Corporation Limited (NNPCL), in what appears to be a common practice of disregard...
INVESTIGATION: Multi-million naira Ekiti resort center remains uncompleted a decade after
The multimillion-naira project, expected to comprise recreational buildings, now consists of cassava farmland, a bush used for excretion, and a...