Technologies

In the last version of iOS, they found a vulnerability that allowed them to remotely seize control of the Apple gadget

In a previous version of the operating system for Apple gadgets found a vulnerability The programmer found a vulnerability when using Apple ID. For this, he received $ 100,000 from a company that allows attackers to remotely gain control of the device. The flaw in iOS 13 was discovered by cybersecurity expert Ian Beer, who works in the Google Project Zero team. The problem is with the AWDL data protocol that Apple uses to create simple time networks between devices, which are required for features such as AirDrop and AirPlay. The lack of security allows an attacker to remotely reboot the device and then gain full control over it with access to photos, messages and other user data.

A prerequisite for this is the presence of the devices of the attacker and his victim in the same Wi-Fi network. According to the publication, Apple fixed this vulnerability in May this year. In addition, Beer himself notes that there is no evidence that this vulnerability has been widely exploited. In July, it was reported that Apple will release a limited series of “hacking” iPhones for developers in the field of cybersecurity – they will help experts find vulnerabilities in smartphones and build protection. Earlier, Indian cybersecurity expert Bhavuk Jain discovered a vulnerability that allowed attackers to access the accounts of owners of Apple gadgets. For this, Jain received a reward from the company in the amount of $ 100 thousand.