Inside recent news, the hackers behind the SolarWinds source chain attack last year found out an iOS vulnerability hence making millions of iPhones around the world susceptible to receive cyber assaults. This cyber-attack was initially part of an email campaign aimed at taking web security credentials from Western European governments.
These hackers have also sent malware to Windows customers on numerous occasions. Based on cybersecurity researchers, Maddie Rock and Clement Lecigne, an european government-backed actor exploited the particular iOS vulnerability in order to deliver malicious messages to federal government officials via LinkedIn.
This attack provides targeted iOS versions twelve. 4 till 13. seven which redirected users to domains that installed destructive payloads despite the iPhones getting fully updated. The payloads would collect authentication biscuits from numerous websites for example Google, LinkedIn, Facebook, plus Yahoo and then send these to the hacker via a WebSocket.
This assault normally happened to users which used browsers like Firefox and Chrome together site location enabled. So far Apple has not released any security patch for the apple iphones but it is expected that the patch will come around true soon.