Your chat history on iMessage just went through a period when it was not altogether safe, but now, all wrongs have been righted thanks to an OS X update. A major issue in iMessage was recently fixed by Apple, preventing hackers and other ne’er-do-wells from pulling victims’ message histories.
It turns out that, prior to the fix, hackers had the ability to send iMessagers special links that, when clicked, granted access to the otherwise encrypted messages sent between iPhone users. In fact, so simple was the vulnerability that security researchers at Bishop Fox said that, “You don’t need a graduate degree in mathematics to exploit it, nor does it require advanced knowledge of memory management, shellcode, or ROP chains.” But now, Apple has addressed the issue, and your correspondence is safe once more.
While the problem has been addressed, it does nothing for the security reputation of Apple, who has recently had their iPhone hacked by the FBI as well as by researchers at John Hopkins, who published their own findings on iPhone vulnerabilities just a few weeks ago. This latest hole was discovered by researchers Joe DeMesy and Shubham Shah of Bishop Fox, along with Matt Bryant of Uber’s security team. The trio told Apple before they told the public, and thus far, there’s no evidence to suggest that any iMessage user fell victim to an attack as a result from the security flaw.
- Apple iOS 11.2.2 update offers a fix to the Spectre security vulnerability
- Blizzard patches security hole to block hackers from sending fake updates
- How Google’s ‘Project Zero’ task force races hackers to snuff out bugs
- Hackers target Windows clipboard to steal cryptocurrency wallet addresses
- Microsoft misses another Edge-related 90-day security disclosure deadline