Just yesterday we warned Android users about two major vulnerabilities found in LG devices. The flaws are putting millions of Android users at risk. Click here to read the full story, if you missed it.
Now, it looks as if an unpatched vulnerability on Apple devices is making iPhones and iPads prime targets for malicious apps. At the recent Hack in the Box conference in Amsterdam, hackers were encouraged to put the latest version of iOS to the test. It was all in an effort to identify and correct problems, of course - but the main issue they discovered was alarming.
During their tests, hackers were able to exchange legitimate apps with malicious counterfeits without being detected. One researcher explained that the code he'd developed could still create problems on devices, even if they were not jailbroken - or modified by the end user.
Chilik Tamir, a researcher from Mi3 Security designed an attack called Su-A-Cyder, which allowed him to swap out original apps with counterfeit versions that allowed him to spy on the users' activity. He was also able to gain extended permissions that allowed him to access the users' contacts, photos, messages, microphone, etc., which could all be used for spying.