Sunday, 25 August, 2019

Apple Contacts App Vulnerable To Hacking, Putting iPhone Users At Risk

Contacts on iPhones vulnerable to hack attack Report Contacts on iPhones vulnerable to hack attack Report
Sandy Mccarthy | 13 August, 2019, 16:30

At the annual Black Hat Security Conference in Las Vegas, Apple announced its highest-ever bounty program for security researchers to detect any flaw in the iPhone, reported The Verge. Searching the Contacts app under certain circumstances enables the iPhones and iPads to run malicious code, reports AppleInsider.

To put it another way, if you search for a contact in the Contacts app, you're actually just using the SQLite format.

But the real shocker is why the Contacts app vulnerability exists in the first place: it capitalises on a known bug which Apple has failed to fix for four years. However, researchers managed to make a trusted app, like Contacts, be their worst nightmare.

The vulnerability has been identified in the industry-standard SQLite database.

"Persistence (keeping the code on the device after a restart) is hard to achieve on iOS as all executable files must be signed as part of Apple's Secure Boot".

According to the Mashable reports, people capable of bypassing iPhone's lock screen while having physical access to the device will be rewarded $100,000 and those who can execute a kernel code through an installed app will be paid off $150,000 as a reward. But the SQLite is so versatile that it could be triggered in "many scenarios". He said that Apple takes privacy and hacking very seriously.

Fortnite's Teenage World Champ Swatted Live on Stream
In March, an American man was sentenced to twenty years in prison for a similar incident that resulted in a shooting. Newly-crowned Fortnite world champion Kyle Giersdorf has been confronted by police in the middle of a game.

Putting their security systems to the test, Apple are offering up $1 million (£830,000) to anyone that can successfully hack an iPhone.

But now that the bug bounty program includes all of Apple's platforms, hopefully this will keep its security ahead of any attacks in the future.

Recently, a group of hackers working for Google's Project Zero program uncovered a cache of flaws in Apple's software, which would allow hackers to gain access to your phone simply by sending you a message. It's the biggest bug bounty program by Apple.

Krstić, also mentioned that the tech firm will be offering some easy to hack phones to anyone who can discover bugs in the devices.

But the Google hackers quietly shared the details with Apple, which fixed the flaws before the details were made public.

Recommended

Government announces changes to endangered species protections Government announces changes to endangered species protections Fish and Wildlife Service (FWS), is to help species recover to the point that they no longer need federal protection. Several Oregon species now being considered for listing under the ESA would be subject to the new rules.

'The Crown' season 3 release date confirmed by Netflix 'The Crown' season 3 release date confirmed by Netflix In a 21-second video, Her Royal Highness Queen Olivia Colman has announced the release date for The Crown season 3. Gillian Anderson will also reportedly be joining the fold as former Prime Minister Margaret Thatcher .

Italy's governing coalition facing collapse Italy's governing coalition facing collapse Conte said he would no longer accept Salvini's attacks on his ministers and accused him of relying on "slogans". It was unclear when that might happen, since parliament has adjourned for the summer holiday.

Liverpool keeper Alisson out for 'next few weeks' says Klopp Liverpool keeper Alisson out for 'next few weeks' says Klopp If Alisson is set to miss 6-8 weeks of football, he will most likely not feature in the games against both those London clubs. The Reds face Chelsea in the Super Cup final this week, and will also face Arsenal and Chelsea before the end of September.

LG G8X Expected To Launch At IFA 2019 LG G8X Expected To Launch At IFA 2019 It has a dual rear camera setup accompanied with an LED flash, aligned horizontally, like the one we have seen in G8 ThinQ . But keep in mind these renders are based on leaked CAD files; they're not "official" press images from LG itself.

5 children killed in Pennsylvania daycare fire 5 children killed in Pennsylvania daycare fire The cause of the fire remained under investigation Sunday afternoon, Widomski told the newspaper. Four of the victims were siblings who were being cared for at the day care, the fire chief said.

Celtics The 2019-20 Boston Celtics schedule is announced Celtics The 2019-20 Boston Celtics schedule is announced Kawhi Leonard and Danny Green might be gone, but what they helped accomplish can never be taken away and will long be remembered. The sixth annual Giants of Africa Game, which honours the life of Nelson Mandela, is on December 5 versus the Houston Rockets .

System Shock 2 Enhanced Edition announced and "coming soon" System Shock 2 Enhanced Edition announced and The System Shock remake is in development for PlayStation 4, PC, and Xbox One, and will release in 2020. The ideal way to complement the System Shock remake is with an Enhanced Edition of System Shock 2 .

Canada cable auto vandalism as cord cut deliberately, police say Canada cable auto  vandalism as cord cut deliberately, police say The company's gondola rides take passengers nearly 3,000 feet above sea level to see views of Howe Sound and nearby waterfalls. Nearly all of the 30 gondola cars attached to the cable crashed to the ground, according to staff working overnight.

'Serious Irregularities' At Jail Where Epstein Died, Attorney General Says 'Serious Irregularities' At Jail Where Epstein Died, Attorney General Says And as Jackson Proskow reports , new questions are being raised about the apparent disappearance of Epstein's former girlfriend. Several of the women who have made the claims against him said they were disappointed he would not face the justice system .

Jennifer Aniston Returns to TV With 'The Morning Show' Trailer Jennifer Aniston Returns to TV With 'The Morning Show' Trailer I think they want to trust that the person that is telling them the truth about the world is an honest person . Gugu Mbatha-Raw, Billy Crudup , Bel Powley , Karen Pittman , Desean Terry , and Mark Duplass will also star.

Bodies Found in Manitoba Confirmed to be Wanted Murder Suspects Bodies Found in Manitoba Confirmed to be Wanted Murder Suspects The former fugitives were initially feared missing when their burned-out truck was found July 22 on the side of a remote highway. July 31 - Police announce they have done everything they can and are scaling back the search, although not ending it.

Russia tells Google not to advertise "illegal" events after election protests Russia tells Google not to advertise Russian Federation has cracked down on search engines in recent years by introducing laws that restrict specific search results. Protest tally NGO White Counter estimated that nearly 50,000 people attended the opposition's arrest-laden demonstration.

China official says Hong Kong is at a 'critical juncture' China official says Hong Kong is at a 'critical juncture' But in recent years, some have accused the Communist Party-ruled central government of steadily chipping away at their freedoms. At a press conference this afternoon, a Hong Kong police spokesman would not rule out using tear gas to at the airport.

Prosecutors say OH shooter's friend bought him armor Prosecutors say OH  shooter's friend bought him armor During that interview, Kollie allegedly told agents that he likes guns and now owns a handgun and a micro Draco pistol. File-This undated file photo provided by the Dayton Police Department shows Connor Betts .