Apple iPhones Vulnerable to Hacking Via 8-Year-Old Bug in iOS ‘Mail’ App

Apr. 23, 2020

According to an official blog post, the vulnerability, whichaffects both iPhones and iPads, allows remote code execution and enables an attacker to remotely infect a device by sending emails that consume significant amount of memory by using RTF, multi-part, and other methods. On iOS 13, the exploit can be triggered even without a click (zero-click) when the Mail application is opened in the background. As long as a patch isn’t widely available,the researchers are advising users to disable Mail to prevent an attack.

According to the researchers, the vulnerability affects both iPads and iPhones, and has already impacted at least six organizations and their staff. Victims include employees of a Fortune 500 company in North America, an executive from a carrier in Japan, a VIP in Germany, cyber-security firms in Saudi Arabia and Israel, and a journalist in Europe. An executive in a Swiss company is also believed to have been the target of the hack.

Passionate techie. Professional tech writer. Proud geek.