The Mail app for iOS, one of the most used by millions of iPhone users around the world, has a flaw that makes it vulnerable to possible attack by hackersThis has been the case since 2012. Or at least this is what a recent security report assures us.
The research team of ZecOps, a San Francisco cybersecurity company, claims that this vulnerability allows an attacker to infect a device remotely by sending memory-intensive emails.
This way of exhausting resources can be done with a mail of normal size, since it does not depend on the size of said mail. Even more alarming is the fact that, according to the company, they can do it without you clicking, or at least in iOS 13.
Simply opening the Mail app in the background will trigger the infection. In iOS 12, you may have to click on the email, although it is not necessary if the hacker you already have control of the mail server.
ZecOps claims that this vulnerability has existed since 2012 with iOS 6. It is hard to believe that such a serious flaw in such a used app has not been solved before, but the truth is that companies often do not realize it until they do. does a security researcher or a hacker First.
When it comes to a white hat (a hacker ethical), this usually informs the company in secret and does not reveal that failure until it has been fixed, and thus prevents hackers Malicious users use the information to attack users.
In the case of the Mail app, this was not entirely the case. For now, Apple has only had time to fix the bug in the latest iOS beta, but not in the public version. That is why ZecOps recommends using the beta or the Outlook or Gmail apps.
Not everyone has been convinced by this information from the San Francisco company. As pointed out in The Verge, have not offered any evidence, probably for privacy reasons and because it is believed that the hackers They will have deleted the emails remotely.
ZecOps which ensures that several notorious characters have been attacked using this bug. These could include workers from a US Fortune 500 company, an executive from a Japanese operator and another from Sweden, among others.
It is understood that the company does not want to reveal their names, but this is not proof of anything. However, we recommend that you follow our iPhone security tips to protect your phone from hackers.