NOTICE: If you believe your Apple device has been hacked through the bug identified by ZecOps, contact the Arnold Law Firm at (916) 777-7777 as soon as possible.
On April 22, 2020, mobile security firm ZecOps published a report about a bug in Apple Inc. iPhone iOS email software that makes devices vulnerable to cyberattacks.
Reportedly, the bug has already been used to attack high-profile targets, including individuals from a Fortune 500 company in North America, international technology executives, and a European journalist. ZecOps chief executive Zuk Avraham claims that at least six organizations were targeted by attackers as far back as 2018.
The bug dates back to iOS 6, which was first released in 2012. It allows hackers to send a message that appears to be blank to an iPhone or iPad user email account. When the user opens the suspect email, hidden malware downloads and crashes the app.
The user is forced to reboot their iPhone or iPad, which allows the device memory to be overrun. Hackers can then steal data from and/or take control of the iPhone or iPad.
On the latest version of iOS 13, the bug does not require any user interaction. The malware downloads automatically, even if the user does not open the email.
This type of attack is virtually undetectable and does not require victims to take traceable actions, such as downloading external software or clicking on a link to visit a website with malware. Because they are difficult to find, iPhone vulnerabilities are the most valuable for hackers, selling for up to $1 million on the dark web.
There are currently more than 100 million iPhone users in the United States, accounting for 45 percent of all smartphone users nationwide.
The bug appears to have been fixed in a beta version of Apple’s next iOS update. Public versions of iOS have not yet been patched, leaving users vulnerable until the new version is released.
To avoid the bug, iPhone and iPad users should disable the email app or at least turn off automatic email fetching from the mail server on their devices. Limit email access to the cloud and screen carefully for potentially malicious messages.
The Arnold Law Firm is currently investigating this Apple, Inc. security incident. If you believe your Apple device has been hacked through the bug identified by ZecOps, contact us at (916) 777-7777 as soon as possible to assess your situation and possible legal options.
With personal injury cases, success is defined by more than the number of dollars awarded at settlement. Our clients come to us not just bearing physical and financial trauma, but emotional and situational scars, as well. As the legal process evolves, relationships are built with our clients that typically last for a lifetime. Sometimes, that […]Learn More
On November 8, 2018, Anna* and her family fled their home in response to the Camp Fire mandatory evacuation. The massive fire destroyed more than 18,000 homes, displacing 50,000 residents in the town of Paradise, California, and surrounding areas. They didn’t have friends or relatives in neighboring cities to stay with and soon discovered that […]Learn More
On a warm August evening, Ray G. and his family were driving home from a school sporting event. As his Ford F250 pickup traveled through an intersection on Washington Blvd in Roseville, California, a Toyota Corolla compact sedan ran the red light and slammed into the driver’s side of Ray’s truck. The driver of the […]Learn More
Kimberly and Brian, both established professionals in Sacramento, were excited about moving into a charming yellow house in one of the best neighborhoods in the area. They had agreed to a lease-to-own arrangement that allocated $3,500 per month toward rent and an additional $2,000 per month toward a refundable deposit for the potential purchase of […]Learn More
Matthew B. contacted the Arnold Law Firm after consulting with multiple attorneys in the Sacramento area, including another major personal injury firm and an attorney specializing in motorcycle accidents. His case was rejected by other attorneys due to complexity with liability. As the rider in a car vs. motorcycle collision, Matthew suffered significant injuries to […]Learn More
Mr. E was on his way to work one very ordinary fall morning when an inattentive driver ran a red light, collided with his vehicle, and changed his life forever. In that moment, although he didn’t realize it at the time, a chain of events was set into motion that affected every aspect of his […]Learn More