Apple iOS Bug Tricks Users Into Sharing iCloud Password

Apple iOS Bug Tricks Users Into Sharing iCloud Password
ElisaRiva / Pixabay

A new iOS bug was discovered by researchers, and it poses a serious threat as it tricks people into sharing their iCloud passwords. The bug specifically uses a flaw residing in the Mail app. The app failed to clean out the code from incoming electronic mail. Since the bug downloads a special form via a remote server, it looks very similar to the login prompt message from iCloud. It replaces the original email message with remote HTML content.

Apple’s iOS bug issue

Such exploits can be programmed once to show the password prompt. It works by using the autofocus feature to cover up the dialogue field.

Seth Klarman’s 2021 Letter: Baupost’s “Never-Ending” Hunt For Information

Baupost's investment process involves "never-ending" gleaning of facts to help support investment ideas Seth Klarman writes in his end-of-year letter to investors. In the letter, a copy of which ValueWalk has been able to review, the value investor describes the Baupost Group's process to identify ideas and answer the most critical questions about its potential Read More

All a hacker must do to launch an attack is send an email with an HTML tag to their target. The hacker also must have an internet computer giving a fake login prompt. The Mail app’s browser embeds the image into the email in such a way that doesn’t look similar to the original. The vulnerability can also send beacons back to senders to let them know who viewed the emails. It also displays view dates and locations.

How users can prevent attacks

In order to prevent attacks from hackers, users should always press the cancel button and avoid entering login information when given unexpected login prompts. If the user enters a password, they should do it when the emails are not displayed. To find a false prompt, the user should press the home button. If the user’s device displays the main screen upon pressing the home button, the prompt is fake.

The bug was first brought to the attention of Apple earlier this year, but the Cupertino-based tech giant has yet to do anything about it.

In other Apple news, the tech giant recently unveiled a significant update to iOS 9 that includes ad-blocking features. AdBlock Plus recently vocalized a complaint regarding Apple’s update as it could easily replace its service.

via: ArsTechnica

Updated on

Anna Peel is a professional writer. In the past four years, she has written for many websites including BSC Kids, Wasabi Media Group, Boomtron, and many others. She currently live in Savannah, Georgia and occasionally blogs about fashion during her free time.
Previous article Busting The “Canadian Bakken” Myth
Next article Will 3D NAND Help Intel Defend Its Data Center Market?

No posts to display