iOS bug: iPhone users urged to update after Apple fixes huge password vulnerability
The bug could let hackers steal your passwords and secretly run software
Your support helps us to tell the story
From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.
At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.
The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.
Your support makes all the difference.If you haven’t just updated your phone, it might be in huge danger.
A new update fixes security holes that would allow hackers to grab passwords and other important information with just one infected iMessage.
All hackers would have to do is to send an infected image to a phone, which will automatically open up it as soon as it is received. Once that file is received, hackers get the ability to run malicious code on that device – letting them run programs or hoover up passwords.
The security bug is present in every version of iOS and macOS apart from the very newest ones – iOS 9.3.3 and El Capital 10.11.6. Those updates were released this week and so Apple advises
The bug has only just been made public after being discovered by Tyler Bohan, a researcher who works for Cisco’s security unit. But it was shared with Apple ahead of the publication, so that it could be fixed without notifying hackers that it could be used.
It’s also possible to keep the phones from being infected by turning off iMessage and disabling MMS messaging, meaning that there’ll be no way to send over image files through texts, and ensuring that no questionable images are opened over email. Though there are no known problems with the latest updates, that will help keep devices safe until they are upgraded to the latest software.
Though Apple devices get updated far more reliably than Android ones – new releases for which tend to get held back by networks and phone manufacturers – there are still thought to be tens of millions of phones that haven’t even been updated to iOS 9, the last major release that came out in September last year.
Join our commenting forum
Join thought-provoking conversations, follow other Independent readers and see their replies
Comments