In what's being touted as potentially one of the biggest attacks on This Isn't the Twilight Saga: Breaking Dawn 2 XXX ParodyiPhone users ever, Google has revealed that a collection of websites were hacked to deliver malware onto iPhones, with the iOS vulnerabilities involved going unchecked and undiscovered for years -- as well as subsequent attacks.
The hacks installed zero-interaction malware into unnamed sites that received thousands of visitors every week. Simply visiting the sites, without clicking or scrolling at all, could deliver a monitoring implant onto users' iPhones.
Google demonstrated that the implant could "steal private data like iMessages, photos and GPS location in real-time"; it also had access to users' keychains and password data, as well as database files containing plaintext of messages sent and received in messaging apps such as Google Hangouts, and even end-to-end encrypted apps including WhatsApp, iMessage, and Telegram.
The malware would be wiped if the iPhone was rebooted, but any sensitive information obtained during the infection could still leave the device, its user, and their online life vulnerable to attack.
SEE ALSO: Apple will announce new 'iPhone 11' and 'iPhone 11 Pro' on September 10While the choice of sites appeared designed to target certain communities, the attack was otherwise indiscriminate.
Google's security research initiative Project Zero posted a "very deep dive" detailing the exploits, which their Threat Analysis Group discovered and disclosed to Apple in Feb. 2019.
The team found five "separate, complete and unique" exploit chains using 14 vulnerabilities. Several were zero-day, meaning Apple was unaware of them at the time of Project Zero's discovery; Apple patched these within the seven-day deadline Google gave in iOS 12.1.4, the same Feb. 7 update that patched the infamous Group FaceTime vulnerability.
The exploits date back to iOS 10 and through updates of iOS 12.1.2, encompassing "almost every version" in that timeframe.
This Tweet is currently unavailable. It might be loading or has been removed.
The number of Apple exploits discovered appears to have risen sharply over the past year. At the end of July, Project Zero revealed six zero-interaction security bugs that could be exploited through iMessage, only five of which Apple had managed to patch by the time the Google team revealed them. And in August, news broke of the SQLite vulnerability, as demonstrated at DEFCON 2019 using the iOS Contacts app, as well as the vulnerability to the Bluetooth-based "KNOB" attack that affected every iPhone and iPad.
Mashable has contacted Apple for comment.
Topics Cybersecurity
Today's Hurdle hints and answers for May 5, 2025
Michelle Obama gave the world a classic Barack impression
Olivia Colman's shoutout to her 'bitches' is proof that she is a living legend
Christian Bale credits Satan for his portrayal of Dick Cheney in 'Vice'
How to Easily Make iPhone Ringtones Using Only iTunes
LG's mind
Watch NFL star Melvin Gordon, Jr. troll his Ravens fan Uber driver
Christian Bale credits Satan for his portrayal of Dick Cheney in 'Vice'
The State of PC Gaming in 2016
Rob Kardashian pulls off platinum blonde as well as his sisters
Q&A with tendercare founder and CEO Shauna Sweeney
Secluded library retreat is a book lover's dream
Overeager giraffe gets a little too friendly during local news report
Love is dead: The internet freaks out after Angie breaks up with Brad
Best robot vacuum deal: Save $200 on Eufy X10 Pro Omni robot vacuum
FoldiMate's $1000 laundry
Michelle Obama gave the world a classic Barack impression
Facebook's Oculus Quest standalone headset is the savior VR needs
The Anatomy of Liberal Melancholy
LG's mind
Wordle today: The answer and hints for May 20, 2025Five Free VPN Services You Should Check OutThirteen Steam Features You Probably Don't Know AboutThe State of PC Gaming in 2015The State of PC Gaming in 201510 Tech Predictions for 2016Steam Refunds: Friend or Foe?Shop Owala's Memorial Day Sale for 30% off tumblersYouTuber announces shock retirement after 6.8 billion views take toll on familyWhy Game Developers Keep Getting Laid OffA Steve Ballmer Story That Helps Explain MicrosoftSamsung just launched its 2025 OLED TVs with Nvidia GInternet for AllVirtualized Desktops & GPU Acceleration: Is This The Future of Computing?Nintendo raises Switch 2 sales forecast to 20 million unitsToday's Hurdle hints and answers for May 20, 2025NYT Connections hints and answers for May 20: Tips to solve 'Connections' #709.Intel's 100REI Anniversary Sale: Save on Bote, Sea to Summit, The North Face, and more.23andMe's trove of DNA data was just acquired by this pharma brand Maybe don't get a photo with your friends inside a crocodile trap How to create a family calendar on Google Google's AI has some seriously messed up opinions about homosexuality No, it's not OK to shame people who gained weight during the pandemic It's probably not aliens: 'Oumuamua theory suggests simpler origins Elon Musk is now the official 'Technoking' of Tesla, whatever that means Trump didn't receive the warmest Capitol Hill welcome thanks to this protester Chan Zuckerberg Initiative has committed $45 million to two political causes Kia reveals the EV6, its first 'dedicated' battery electric car Blood liner is the latest makeup trend to try if you're obsessed with Halloween Samsung unveils new lineup of mid What Comcast's low 'Zack Snyder's Justice League' review: It's a big improvement Facebook is working on wristbands that let you control a computer with your mind The New Yorker's latest Trump cover is a spooky nightmare New Zealand's new prime minister has a Twitter account for its cat Michael Phelps won't tell me what Boomer's being for Halloween Please, I beg of you, stop suggesting consent apps 'Time' found the perfect visual representation for Trump's destruction Lady Gaga's latest wax figure is straight out of a nightmare
1.5647s , 10132.0078125 kb
Copyright © 2025 Powered by 【This Isn't the Twilight Saga: Breaking Dawn 2 XXX Parody】,New Knowledge Information Network