Apple Cyber Flaw Allows Hack iPhone via iMessage

KAJAL THARWANI

28th Nov'21

Apple instructed its users to quickly update their devices after researchers claimed the misuse of their technology. But how and why?

 

What was the Matter?

According to Citizen Lab, an academic research group, “A few weeks ago, Apple sent a critical security update for fixing the flaw. But the vulnerability was attacked by Israel's NSO group.”

The NSO Group has developed software to take control over any Apple device, be it a watch, computer, or iPhone.After identifying the flaw, Apple rapidly developed a fix in iOS 14.8 to protect the users. 

The software takes control over a device by first sending a message through iMessage, Apple’s default messaging app, then by taking advantage of Apple processing images. In the cybersecurity industry, this process is known as a “zero-click” exploit. Zero-click is a dangerous flaw that does not need a victim to click or download any file to take over the details by others. 

On the matter, Scott Railton, Senior Researcher of citizen lab, said “People whose devices have been exploited are extremely unlikely to realize they have been hacked. The user sees crickets while their iPhone is silently exploited.”

He further added, “ Someone sends you a GIF that isn’t, and you are in trouble. That’s it. You don’t see a thing.”

Also Read:  How Important is it to Fix Tensions Between Legal And Technical?

 

Cyber hack

 

The Updation 

The users who want to update their iPhone can go to Settings>General>softwareUpdate and then download an update available.

For Mac users, the update is available in the preferences.

The customers using Apple watches can update it through the Apple Watch app available on the iPhone. For the watch, go to General>Software Update. 

 

What is NSO Group Technologies

NSO stands for Niv, Shalev, and Omri, the names of the founders of the company. It is an Israeli technology firm known for its zero-click surveillance of smartphones.

On this matter, an NSO spokesperson, in an emailed statement, said, “NSO group will continue to provide intelligence and law enforcement agencies around the world with life-saving technologies to fight terror and crime.”

 

Statement from the Citizen Lab

On claiming the NSO group for this hack, they said in an email statement,  “Citizen lab discovered attack code belonging to the NSO Group, which was established based on naming conventions and the behavior of the software.”

 

cyber hack

 

Statement from Apple

Ivan Kristch, Apple’s head of Security Engineering and Architecture, in an email statement, said “Attacks like the ones are highly sophisticated, cost millions of dollars to develop, often have a short shelf life, and are used to target specific individuals.”

Ivan also thanked Citizen Lab for alerting the company to the exploit.
 

Conclusion

Earlier this month, Apple developed a system to detect child pornography on its phones after the critics said that it could undermine the privacy of the iPhone. Apple has fixed many iPhone bugs. Many of them were exploited by cyber attackers. The zero-click is the rarest and the most dangerous software for one’s privacy. Although, the immediate decisions by the company will make sure to save the user. 

 

We at OpenGrowth, are committed to keeping you updated with the best content on the latest trendy topics from any major field. Also, both your feedback and suggestions are valuable to us. So, do share them in the comment section below.

An explorer who takes risks and learns from her mistakes. An aspirational content writer, studying social work. Kajal loves trying her hands in different crafts.

Comments

cheryl.kragg@mail.com

28th Aug'22 01:42:07 PM

Finally! I found a legit c yber guru that works on all c redit related issues. I had a low c redit of 490 which wouldn't let me qualify for anything, it was a struggle finding a real agent after having l ost money to rippers here.. luckily I met D e n n i s on Qoura and after 3weeks working with him my score right now is 780 and he is still working on my lingering d ebts which is why I decided to share this for anyone in need not to fall into wrong hands.. contact him on D E N N I S D F I X E R @G M AIL.C OM or +1609 451 7368

lynnhellman23@gmail.com

11th Aug'22 09:20:45 AM

Do you know that hundreds to thousands of people have their mobile phones, emails, and computers hacked almost everyday . The list of complaints for hackers is long, but the authorities do not have the ability to trace these hackers and hold them liable for their deeds. You can actually hack a hacker simply by hiring a black hat hacker from the Dark web . I have hired different types of hackers but (A C E T E A M H A C K E R S @ G MAIL DOT COM ) is the best and i have been using him for 2 years now. He specializes in hacking whatsapp , facebook, tik tok, instagram, remove criminal records, credit score boost, database hack.

aceteamhackers@gmail.com

6th Aug'22 11:10:51 PM

Dishonesty begets dishonesty, Yes i know breaking into my husbands phone was violating his privacy and its not the right thing to do, but i couldnt afford to keep thinking every time if maybe my husband was cheating after i noticed so many secret calls and chats , I decided to hire a professional hacker to remotely hack his phone and to my surprise my husband was cheating on me with different women. I was so disappointed after he said so many negative things about me , i filed for a divorce and saved myself . If you need to spy on your partner you can send an email to aceteamhackers@gmail.com .

dbethofficial@gmail.com

6th Aug'22 11:12:07 AM

I’m great full to a new friend who’s name is Ernest he saved my career from being tarnished; I met a guy last year on my to the grocery store. We became friends and afterwards we found our selfs in a serious relationship, I never knew he had plans to blackmail and extort me. He made videos unknown to me each time we had sex and took lots of pictures of me naked while I sleep or have my bath, I noticed something about him changed and later I got treats from him telling he was going to send the videos to my associates and then post online too. I confided in a friend she spoke to her brother and he introduced me to an hacker that helped him repair his credit 2 years ago I called this hacker with no doubt he was my helper on this one he asked me few questions to gain access to my so-called boyfriends phone I gave him the information he needed and he got the job done quickly he didn’t just hack the targeted phone he also hacked his laptop; I’m recommending this guy to you reach out to him for anything that has to do with hacking and I assure you’d get the best results. WhatsApp +1 (854) 900‑4461

Jenny Campbell

4th Jul'22 12:01:16 PM

Sincere appreciation to Robert Harrison for recommending KENSTAR to me. He helped me cleared late payments, debt, raised my score and erased all negative items on my credit report. I strongly advice you contact him for credit services; Kenstarcyberservices@gmail.com

Kelly James

20th Apr'22 09:04:58 PM

Raylink Cyber services truly FIX BAD CREDIT FAST. There’s nothing better than getting a new vehicle with low APR! See results in 3-5 days! Raylink made it happen for me just last month I contacted him, I’m pleased with the job Raylink did to my credit report. I now have a clean credit with an excellent score of 825. He went ahead to add positive tradelines to my report and cleared the debts I had. Contact him on RAYLINKCYBERSERVICES@GMAIL.COM

Diego Perez

4th Apr'22 06:31:16 PM

My name is Diego Lopez. I was scammed of USD459,800 by this mining pool. I wanted to withdraw USD100,000 from my account. They asked for 5% tax to be paid to the Hong Kong Tax Bureau so I sent them USD22,990. But they came back saying since I am at the VIP stage (funds of USD200,000 or more), I am allowed to withdraw a minimum of USD200,000 only, nothing less. So I sent them an additional USD20,000 promising to send another USD15,200 for extra charges. However, after sending the additional funds of USD15,200, I never got any reply. Never heard from them since. Luckily for me I started searching online for a possible way to get my money back. Then I found a recovery company called “Backend Recover". I contacted them and explained in detail how I lost my money. Finally they helped me recover my money back and I am happy again. If you have ever lost your money online to your broker or whatever online scheme, be it binary or crypto currency trading, dating, loan scams, lottery or whatever, there is a solution for you this is my testimony. You can contact them on (backendrecover@ rescueteam .com) for more information on how to recover your funds.

Ryan Kay

29th Mar'22 06:42:27 AM

Hacknet Credit Specialist is truly amazing. I have been trying for years to get rid of 2 bad accounts on my credit report. So I contacted him from a credit blog, he was able to get Capital One to completely delete their tradeline off all 3 of my reports. He did the same on my second account; and also cleans off my student loan of $54,000 and I got a high score of 795, he has been completely transparent and extremely communicative. Very affordable, I highly recommend him HACKNET567@GMAIL.COM +1 6464502754. Don't hesitate to get in touch with him for credit fix

Mikey Tatum

16th Feb'22 01:08:58 PM

Hello people, have you heard of this Professional Hacker? I was down with a bad credit profile and I was trying to fix it but to no avail, until I meet rockbase@protonmail.com; he helped me to fix and increase my credit score. Rock Base is a wonderful hacker you can ever work with. He does the following: -- Blockchain wallet/fund recovery - Chex system, DUI and DMV fix -Remove Criminal Records -Recovery of your lost voicemail -Hack bank accounts -increase your credit score -increase your credit card limit -wipe your credit card debt -Mastercard, PayPal, Bitcoin, WU, Money Gram with untraceable -Top up your Bitcoin -Facebook, Twitter, Instagram, Snapchat and tiktok hack - mobile spy Hit him up right away and thank me later.

Eric Cole

11th Jan'22 10:05:41 PM

Losing money in the form of lost bitcoin is very easy these days and has also become quite common, a slight mistake is all it takes and we are actually all prone to making mistakes. Money lost to investment portfolios can definitely be recovered with the help of an expert. I was able to get my lost coin recovered recently with the help of ‘( HACKSTARS101 @ WORKMAIL . COM) He’s professional and I recommend him to anyone who may need help recovering lost funds as well.