Press "Enter" to skip to content

When Google finds loopholes in iOS

Press Release

People involved in Google’s Project Zero have found out 6 new flaws in Apple’s iOS iMessage app, which allow a hacker to take control of a device without the owner even knowing.

Google’s Project Zero is a team comprised of security experts and bug hunters who help to identify vulnerabilities. They have now come out with some major findings in iOS, and have already demonstrated 4 of the 6 vulnerabilities. The scariest part is that they do not require the owner of the device to do anything.

The six vulnerabilities are named as follows:

  • CVE-2019-8641
  • CVE-2019-8647
  • CVE-2019-8660
  • CVE-2019-8662
  • CVE-2019-8624
  • CVE-2019-8646

The first four of these can allow remote code to be executed and are activated by sending a message to the target’s phone. The last 2 also involve sending a message, which then can read the phone’s memory and steal files.

Updates available

Being whitehat researchers, members of Google’s Project Zero naturally alerted Apple of each fault. Now, fixes are available in iOS 12.4 which was released on July 22. Make sure you get the update, else you will be vulnerable to these hacks.