The security hole allows hackers to hack iPhone remotely, update iOS now
If you've ever seen hacker movies, you should be familiar with the scene where a hacker can instantly take control of someone's device without touching them.
Of course, that is just a fictional detail that makes the film more engaging and dramatic. However, in a recent discovery, details that seem only in this movie can completely happen in reality.
Security researcher Ian Beer. (Photo: The CyberWire)
According to The Verge, Ian Beer - a security researcher at Google Project Zero, has just revealed that, as of May 2020, a lot of iOS devices, including the iPhone, have a dangerous vulnerability.
Hackers can exploit this vulnerability to restart or take full control of a remote iOS device, including reading email or other messages on it; upload photos from victim's device; ability to eavesdrop on conversations through the phone's microphone, as well as peek through the camera on the iPhone.
(Artwork: iLounge)
According to Beer, the vulnerability stems from a protocol called Apple Wireless Direct Link (abbreviation: AWDL) found on iPhones, iPads, Macs as well as Apple Watch.
In particular, the AWDL protocol is used to create a "Network Connection Model", supporting features such as AirDrop - allowing device owners to share photos or files to other iOS devices, or SideBar - Turn your iPad into a second monitor quickly.
(Artwork: Jaap Arriens / NurPhoto / Getty Images)
The source said, security researcher Ian Beer not only figured out how to exploit the vulnerability, but he also figured out how to turn on AWDL even when the connection was disabled.
According to Ian Beer, "there is no evidence that this vulnerability has been exploited in real life", admitting that it took him 6 months to detect, validate and prove the vulnerability.
(Artwork: Free Images)
The security researcher further revealed that this vulnerability was fixed in May 2020 on the iOS 13.5 update.
Apple also does not deny the existence of this vulnerability. Apple did mention it in May 2020 security updates, according to The Verge.
(Artwork: Tomohiro Ohsumi / Getty Images)
According to Apple, most iOS users are using newer versions of iOS, which have already been fixed. In addition, hackers also need to be within Wi-Fi to be able to exploit this vulnerability.
You should read it
- Remote iPhone hack tool via iMessage vulnerability
- Apple device users are attacked by hackers remotely locking computers
- This is the first person in the world to hack iPhone and then he was only 17 years old
- How to 'hack' time limits on iPhone
- The iPhone can be hacked with just one message without requiring user interaction
- How iPhone vulnerabilities allow websites to hack iOS devices
- Easily bypass the iPhone's authenticity thanks to the vulnerability on iOS 11
- iOS 12 can prevent USB devices from unlocking iPhone
- Hack iPhone for 20 seconds
- The company announced that it could successfully hack the iPhone to 100%
- Hackers successfully compromised data on iPhone X running iOS 12.1 to recover deleted photos, receive 1.2 billion VND
- The latest iOS 11 has been hacked !!!
Maybe you are interested
There is a serious security vulnerability that has existed for 18 years in AMD processors, but it is not too worrying
A dangerous vulnerability that has existed for 18 years threatens millions of AMD Ryzen and EPYC CPUs
Google Workspace security vulnerability caused thousands of user accounts to be attacked
Thousands of iOS apps could be at risk because of an open source vulnerability
Serious vulnerability in OpenSSH threatens millions of servers
Google releases emergency update to patch Chrome vulnerability