No matter how much Apple updates its operating systems, there will always be bugs and backdoors that can be used for evil . There are teams that are dedicated to finding and reporting them, such as Google’s ‘Project Zero’ team.
Two of the members of this elite Internet search engine team have found six bugs in iOS of the type “interactionless” , which seriously jeopardize the security of our devices.
Although Apple supposedly fixed them with the release of iOS 12.4 last week, the truth is that the details about the bugs have remained secret because the sixth one is not completely fixed . That’s the comment of Natalie Silvanovich, one of the discoverers, according to ZDnet.
Four of the bugs allow malicious code to be executed remotely on an iOS device without the user doing “anything”. All that is required is a modified iMessage message that will activate the exploit once it is opened . The other two are able to filter information, also without the user doing anything special.
At AppleAn iOS 13 and iPadOS beta bug allows access to passwords without authentication
These vulnerabilities sell well on the black market and can easily reach values of over a million dollars. If they had, they could have sold for between 5 and 10 million dollars .
The Google team has published proofs of concept for the bugs, so it is very important that users with a compatible iPhone and iPad upgrade as soon as possible to iOS 12.4 and subsequent system updates.