(Ping! Zine Web Tech Magazine) – Security researchers at FireEye have unveiled a new bug that allows hackers access to data on iPhones and iPads.
According to Reuters, the vulnerability, dubbed “Masque Attack,” attacks users devices through malicious apps disguised as real apps via “tainted” emails, links, and text messages.
“It is a very powerful vulnerability and it is easy to exploit,” says FireEye Senior Staff Research Scientists Tao Wei via recent interview.
The bug can be found in iOS versions 7.1.1, 7.1.2, 8.0, and 8.1.1 beta. Computer World noted that Masque Attack is found due to Apple not checking “the validity of the app’s bundle identifier.”
Last week security firm Palo Alto Networks discovered a security threat that targeted iOS devices through USB ports from Apple’s OS X systems. The firm noted that 467 infected applications had been downloaded more than 356,000 times in the last six months.