iOS, Mac OS X Security Bugs Put Apple Devices At Risk
Hackers will always be up to something and Apple devices are not spared from such. Just last year, there was that celebrated “Stagefright” issue, which could do its dirty deeds through MMS.Advertisement
That issue covered mostly Android users, meaning Apple owners didn’t have to worry. That was until recently when the Cisco Talos security team bared possible risks for folks who may have not updated their iOS or Mac OS X devices.
How “Stagefright” Could Harm Apple Devices
MacWorld points out that these claims by the security team are nothing more than a simple showcase of potential vulnerability. They are technically theories but could be a big exploit if activated.
Referring to the MMS means which acted as the gateway for Stagefright, the same malware can intrude through images. Cisco detailed five potential vulnerabilities – CVE-2016-4631, CVE-2016-4629, CVE-2016-4630, CVE-2016-1850, and CVE-2016-4637. The bugs are hitched on how Apple handles and processes images, per ZDNet.
TIF images are the ones singled out that could place outdated iOS or OS X at risk. This file type is usually the one used in publishing, OpenEXR, Digital Asset Exchange file format XML files, and BMP images.
Read: After Xiaomi, Asus Releases Firmware Update For Zenfone 2, Promises To Fix Stagefright Bug
Like the Android version, the file can go off undetected. Similarly and if the exploit is successfully injected, it can compromise a phone or computer with hackers having the capability of using various forms of attacks. The possibilities include possibly features like iMessage, malicious web pages, MMS messages or even email attachments.
Keep Operating Systems Updated
The best way to avoid the threat (whether theoretical or not) is to keep the operating systems updated. iOS has the final version of iOS 9.3.3 and Apple has others updated already such as El Capitan 10.11.6, tvOS 9.2.2 and watchOS 2.2.2. Only Mavericks or Yosemite have yet to be patched.
There may be some holding back updates for various reasons. Like iOS, some may hold off to await for a jailbreak. But as mentioned before, holding back carries risks and the alleged discovery of the Cisco Talos security is proof of such.