Contacts on iPhones vulnerable to hack attack, says report

Article Image Apple is Reportedly Paying $1M to Anyone Who Can Hack an iPhone

Contacts on iPhones vulnerable to hack attack, says report

Since 2016, Apple has been offering $200,000 to hackers to encourage them to work with the company, rather than against them.

Picked up by AppleInsider, security firm Check Point has revealed it has found a way to hack every iPhone and iPad running iOS 8 right up to betas of iOS 13.

"SQLite is the most widespread database engine in the world", Check Point said in a statement.

The vulnerability has been identified in the industry-standard SQLite database.

Two members of Google's security research team found six critical security vulnerabilities in the Apple iOS 12.4 update which was released earlier this month.

This year alone has seen Apple exposed by a variety of flaws and vulnerabilities that could impact their users. More specifically, it targets its reliance on the SQLite database format that's used pretty much everywhere from Windows 10 and macOS to Safari, Firefox and Android. "However, Check Point's researchers then managed to make a trusted app [the ubiquitous Contacts app] send the code to trigger this bug and exploit it".

The fivefold increase in the bug bounty programme this year focuses on finding vulnerable bugs in all the Apple platforms such as iOS, iCloud, iPadOS, macOS, tvOS and watchOS. "Luckily for us, SQLite databases are not signed", the researchers were quoted as saying.

In terms of just what is exactly they expect from you to earn that milly, the researchers (hackers) who are able to hack the core of iOS without any clicks required, will go home a million dollars richer.

At the annual Black Hat Security Conference in Las Vegas, Apple announced its highest-ever bounty program for security researchers to detect any flaw in the iPhone, reported The Verge.

With people growing more concerned about their digital privacy and how secure their personal data is, Apple is putting its money where its mouth is when it comes to protecting its customers from hackers. The tech giant has opened its bounty program to a wider group of researchers this time, compared to a selective invite-only group of researchers.

Project Zero, a section of Google's research team, found six vulnerabilities in iPhones a year ago.

"The Fiend" Makes His First Entrance at SummerSlam
Death toll of monsoon landslide in southern Myanmar rises to 59