Set as Homepage - Add to Favorites

【Watch Power】

Source:Exquisite Information Network Editor:Entertainment Time:2025-06-26 17:11:48

A newly disclosed iPhone vulnerability gives hackers yet another reason to love email.

According to the San Francisco-based security firm ZecOps,Watch Power bad actors have discovered a way to attack iOS devices via their default email app. And here's the real kick to the guts: In some cases, you don't even have to be tricked into opening the email. The damage is done simply by your phone downloading the malicious email in the background.

ZecOps published details of the vulnerability on Monday, claiming it has seen the attack "widely exploited in the wild." In other words, ZecOps is saying this isn't just some theoretical bug. Rather, people have actually used it in targeted attacks. The vulnerability affects, to some degree, every version of Apple's operating system from iOS 6 and up.

You May Also Like

"The vulnerability allows remote code execution capabilities and enables an attacker to remotely infect a device by sending emails that consume significant amount of memory," explains ZecOps. "The vulnerability can be triggered before the entire email is downloaded, hence the email content won’t necessarily remain on the device."

Phones running iOS 13 are particularly vulnerable, as they reportedly don't even need to open the email for it to do its work. If you're running iOS 12, you're a tad bit better off — you have to click the email first, but your phone is ultimately still at risk if you do so.

Mashable Light Speed Want more out-of-this world tech, space and science stories? Sign up for Mashable's weekly Light Speed newsletter. By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy. Thanks for signing up!

We reached out to Apple to both confirm ZecOps report and to determine when, if ever, it plans to issue a patch. Apple confirmed that a vulnerability in Mail is patched in the iOS 13.4.5 beta, which is out now, and will be included in an upcoming software update.

Mashable ImageThis, reportedly, is what a failed attack looks like on an iPhone. Credit: zecops

At present, assuming you're not running a beta version of iOS, ZecOps says there is no way to prevent this attack other than to disable the default iOS mail app.

So, should you actually be worried about this? Well, that depends. Are you someone with valuable information that a nation-state might want a piece of? If so, then possibly.

Victims of this attack, claims ZecOps, include "individuals from a Fortune 500 organization in North America," "an executive from a carrier in Japan," "a VIP from Germany," "[managed security service providers] from Saudi Arabia and Israel," and "a Journalist in Europe."

SEE ALSO: As coronavirus spreads, yet another company brags about tracking you

In other words, your average Joe doesn't need to stress about this too much.

Still, it's worth keeping in mind that no operating system is completely hack-proof. And yes, that even includes Apple's. Oh yeah, and it also serves as a stark reminder that you should always make sure your phone is running the latest version of iOS — whether you're an average Joe or not.

Topics Apple Cybersecurity iOS iPhone

Previous:Trump delays TikTok ban for another 75 days

Next:Best smartwatch deal: Save $40 on the Fitbit Versa 4

Related Articles
Related Recommendations
Categories
Latest Articles
Popular Articles
Hot Recommendations
Featured Column

Quick Links

OnePlus 13 and 13R are coming in January to steal Samsung's thunderOpenAI announces o3 and o3 mini reasoning modelsFIFA and Netflix strike a deal on FIFA Women's World Cup streamingDyson Supersonic Origin deal: $299.99 at DysonElon Musk's X raises Premium+ subscription to $22 per monthKindle Rewards double points day: Here's how it worksOnePlus 13 and 13R are coming in January to steal Samsung's thunderEcho deals: up to 54% off at AmazonNYT mini crossword answers for December 21Miami Heat vs. Orlando Magic 2024 livestream: Watch NBA onlineApple Watch Ultra 2 deal: $80 off at Best BuyBest headphone deal: Get a pair of Sony WHWordle today: The answer and hints for December 23Saints vs. Packers 2024 livestream: How to watch NFL for freeNYT Connections hints and answers for December 21: Tips to solve 'Connections' #559.Barcelona vs. Atletico Madrid 2024 livestream: Watch La Liga for freeBest Audible deal: Get a 3Wordle today: The answer and hints for December 21NYT Connections Sports Edition hints and answers for December 22: Tips to solve Connections #90Best Amazon deals of the day: Fire TV Stick 4K, Sony WH Fitbit is buying Pebble, report claims Chinese Communist Party indoctrination app dominates App Store 'Game of Thrones' is over and Sansa is the only MVP pick. Here's why. Brave bandit makes off with bucket of gold in broad daylight Stephen King tweets his defence of the final 'Game of Thrones' season Facebook wants to know who your best friends are A Times Square billboard caught fire, and the tweets were lit Puppy finds adorable way to clean his pee puddle How VR porn can change the way we masturbate for the better Huawei's founder says the company is well Neighborhood has inspiring reaction to complaint over gay pride flag That 'Game of Thrones' coffee cup has made it to 'Skyrim' This artwork combining Superman and Facebook is so on point Baby hits the milly rock in the womb 'Dead' fish miraculously comes back to life the moment the toilet flushes Facebook CTO Mike Schroepfer does not deserve our pity Why there's bipartisan support for fighting Huawei's 5G ambitions Facebook data reportedly helps companies guess your credit score Clue raises $20 million for its period tracking app 'Game of Thrones' fans spot a plastic water bottle in the finale

2.3459s , 10133.4609375 kb

Copyright © 2025 Powered by 【Watch Power】,Exquisite Information Network  

Sitemap

Top

Quick Links