FireEye, a security firm, recently announced they have discovered a vulnerability in Apple’s iOS 7 that could allow hackers to use malicious apps to spy on users. The apps could capture and send every physical button pressed on your iOS device. Hackers could also track TouchID scans and display touch event from your iPad or iPhone and be sent to a remote server. FireEye’s proves that iOS 7 versions 7.0.4, 7.0.5 and 6.1.x are all affected but also the latest version of iOS 7 — namely version 7.0.6 — which was just released this past weekend.
The vulnerability described by FireEye says there is potential for an app to gain access to additional permissions when it is not in use. This is because Apple’s multitasking feature is fairly new and the problem can occur when the app sits in a closed state. The monitor app FireEye built to demonstrate this vulnerability shows the app capturing passwords used, sent messages and each time a fingerprint is scanned in TouchID.
This security vulnerability currently affects all iOS devices but as of right now many people are not at risk. There would still need to be a malicious app installed on your device or an application would need to be modified with malicious external sources in order for this to affect your iOS device. According to Geek there is no way of detecting your data is being sent out. But FireEye explains that by closing apps in multitask mode instead of switching away from them and disabling Background apps you can deduce your risk of being hacked.
© 2024 Latin Times. All rights reserved. Do not reproduce without permission.