{"id":16030,"date":"2019-08-08T10:45:24","date_gmt":"2019-08-08T18:45:24","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2019\/08\/08\/news-9773\/"},"modified":"2019-08-08T10:45:24","modified_gmt":"2019-08-08T18:45:24","slug":"news-9773","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/08\/08\/news-9773\/","title":{"rendered":"Hackers Can Break Into an iPhone Just by Sending a Text"},"content":{"rendered":"

<\/p>\n

Credit to Author: Lily Hay Newman| Date: Wed, 07 Aug 2019 21:07:26 +0000<\/strong><\/p>\n

When you think <\/span>about how hackers could break into your smartphone<\/a>, you probably imagine it would start with clicking a malicious link<\/a> in a text, downloading a fraudulent app<\/a>, or some other way you accidentally let them in. It turns out that's not necessarily so\u2014not even on the iPhone, where simply receiving an iMessage could be enough to get yourself hacked.<\/p>\n

At the Black Hat security conference in Las Vegas on Wednesday, Google Project Zero researcher Natalie Silvanovich is presenting multiple so-called \u201cinteraction-less\u201d bugs in Apple\u2019s iOS iMessage client that could be exploited to gain control of a user\u2019s device. And while Apple has already patched six of them, a few have yet to be patched.<\/p>\n

\u201cThese can be turned into the sort of bugs that will execute code and be able to eventually be used for weaponized things like accessing your data,\u201d Silvanovich says. \u201cSo the worst-case scenario is that these bugs are used to harm users.\u201d<\/p>\n

Silvanovich, who worked on the research with fellow Project Zero member Samuel Gro\u00df, got interested in interaction-less bugs because of a recent, dramatic WhatsApp vulnerability<\/a> that allowed nation-state spies to compromise a phone just by calling it\u2014even if the recipient didn\u2019t answer the call.<\/p>\n

But when she looked for similar issues in SMS, MMS, and visual voicemail, she came up empty. Silvanovich had assumed that iMessage would be a more scrutinized and locked-down target, but when she started reverse engineering and looking for flaws, she quickly found multiple exploitable bugs.<\/p>\n

This may be because iMessage is such a complex platform that offers an array of communication options and features. It encompasses Animojis, rendering files like photos and videos, and integration with other apps\u2014everything from Apple Pay and iTunes to Fandango and Airbnb. All of these extensions and interconnections increase the likelihood of mistakes and weaknesses.<\/p>\n

One of the most interesting interaction-less bugs Silvanovich found was a fundamental logic issue that could have allowed a hacker to easily extract data from a user\u2019s messages. An attacker could send a specially crafted text message to a target, and the iMessage server would send specific user data back, like the content of their SMS messages or images. The victim wouldn't even have to open their iMessage app for the attack to work. iOS has protections in place that would usually block an attack like this, but because it takes advantage of the system's underlying logic, iOS\u2019 defenses interpret it as legitimate and intended.<\/p>\n

Other bugs Silvanovich found could lead to malicious code being placed on a victim's device, again from just an incoming text.<\/p>\n