Android have been a long time target for cyber criminals, but now it seems that they have turned their way towards iOS devices. Apple always says that hacking their devices is too difficult for cyber crooks, but a single app has made it possible for anyone to hack an iPhone. The details about this new vulnerability was published by the Cyber security firm FireEye on its blog on Monday, saying the flaw allows hackers to access devices by fooling users to download and install malicious iOS applications on their iPhone or iPad via tainted text messages, emails and Web links.
“This vulnerability exists because iOS doesn’t enforce matching certificates for apps with the same bundle identifier,” the researchers said on the company’s blog. “An attacker can leverage this vulnerability both through wireless networks and USB.”
Security researchers found that the Masque attack works on Apple’s mobile operating system including iOS 7.1.1, 7.1.2, 8.0, 8.1, and the 8.1.1 beta version and that all of the iPhones and iPads running iOS 7 or later, regardless of whether or not the device is jailbroken are at risk.
- Do not download any apps offer to you via email, text messages, or web links.
- Don’t install apps offered on pop-ups from third-party websites.
- If iOS alerts a user about an “Untrusted App Developer,” click “Don’t Trust” on the alert and immediately uninstall the application.