iPhones at security risk?
Releasing a statement, Apple has lashed out at Google for creating a false impression about its iPhones being at hacking risk owing to security flaws which allowed several malicious websites to breach into the iOS operating system.
As per the researchers working in Google’s Project Zero team, they have discovered different hacked websites which then used security flaws in iPhones to attack users who visited these websites – which has then led to compromise in personal files, messages and real-time location data.
Apple released a statement which attempted to debunk all such theories. It read: “The attack affected fewer than a dozen websites that focus on content related to the Uighur community. Regardless of the scale of the attack, we take the safety and security of all users extremely seriously,” it said in a statement.
Apple in this statement also said that that the so-called sophisticated attack was focused very narrowly and was aimed at targeting iPhones “en masse”.
“Google’s post, issued six months after iOS patches were released, creates the false impression of ‘mass exploitation’ to ‘monitor the private activities of entire populations in real-time’, stoking fear among all iPhone users that their devices had been compromised. This was never the case,” Apple further added.
As per Google, the websites delivered their malware indiscriminately and were also in operation for several years now.
However, as per the iPhone maker, “all evidence indicates that these website attacks were only operational for a brief period, roughly two months, not ‘two years’ as Google implies”.
This does not sit down too well with Google’s Threat Analysis Group (TAG) which discovered that there was no target discrimination as simply visiting the hacked site was enough for the ‘exploit server’ to attack the iPhone, and if it was successful, install a monitoring implant.
“When Google approached us, we were already in the process of fixing the exploited bugs,” Apple said.