Buzz
Recently, warnings about iMessage vulnerabilities on iPhone, possibly iPhone 15 or iPhone 14, have started to emerge, causing significant concern among users. Consequently, malicious actors have exploited this loophole to activate malware, steal information, and seize users' assets. To address this situation, follow the article below from Superstore Mytour!
Warning: iMessage vulnerability on iPhone may result in information theft
1. What is iMessage? Is iMessage different from SMS?
1.1. What is iMessage?
iMessage is regarded as a free messaging service seamlessly integrated by Apple for its ecosystem devices such as iPhone, iPad, MacBook, iPod touch, etc. To utilize this feature, your device must have a WiFi connection or mobile data network. Messages sent through iMessage are completely encrypted and appear in blue.
iMessage is Apple's free messaging service
With iMessage, users can send messages quickly without incurring any charges. Moreover, your conversations will become more vibrant and diverse with features like sharing images, audio, videos, or location to other mobile devices on iMessage.
1.2. How are iMessage and SMS different?
In contrast to iMessage, SMS messages are sent in green and incur charges based on different network providers. Additionally, you can send SMS messages to any phone number rather than being restricted to devices within the Apple ecosystem as in iMessage.
SMS messages sent appear in green and are charged
To use iMessage, your phone must have data or WiFi, whereas SMS allows users to send messages anytime, anywhere. Therefore, if you send an iMessage without accessing the network, the message will automatically convert to SMS and incur charges.
Alongside basic features like SMS, iMessage brings enjoyable experiences for users with outstanding utilities such as sharing audio, video, location, or sending labels/stickers, animated GIFs, and more.
You can enable iMessage on iPhone to comfortably send free messages to friends within the Apple ecosystem, even exchanging photos without incurring charges.
2. How does the iMessage vulnerability on iPhone impact users?
In June 2023, the renowned security software distributor and manufacturer Kaspersky warned users about the risk of account information theft through the iMessage vulnerability on iPhone. Hackers exploit this loophole to distribute messages with malicious files on iPhones running iOS 15.7 and below.
Malicious code is disseminated through iMessage vulnerabilities
Upon infiltrating the device, the malicious code in the message will automatically activate and proceed to swiftly track, collect, and steal information without requiring user interaction. Subsequently, the message will self-delete to avoid suspicion and detection by the victim.
In connection with this issue, Kaspersky security reported a new mobile APT campaign targeting iPhones not updated to iOS 16. Specifically, the malware propagation will be carried out through the spyware Triangle DB. This software exploits vulnerabilities in the iMessage feature to seize control of iOS devices, monitor data, and infiltrate user accounts.
Triangle DB software will take control of iOS devices
This malware operates solely in the device's memory, so when you restart the device, all traces of infection completely disappear. In that case, hackers must send another iMessage with attached malicious code and repeat the previously executed actions.
According to Apple Insider, the tool containing the malicious code cannot persist for too long due to the closed ecosystem of iOS. However, to ensure device safety and patch vulnerabilities in older versions, users need to update to iOS version 16 and above.
Users should update to iOS version 16 and above
In addition to checking and immediately upgrading the device's new iOS version, users can temporarily disable the iMessage feature if they haven't updated in time. Simultaneously, users should be vigilant and thoroughly check before installing any software on their devices. It's recommended to download applications from reputable sources like the App Store. Furthermore, VPS securities advise users to only access websites and applications provided by VPS during trading activities.
Through Mytour's insightful article on potential iMessage vulnerabilities in iPhones, we hope users gain not only valuable information but also learn to safeguard their smartphones effectively. Explore more captivating articles on the eagerly awaited iPhone 15 Series by visiting the shopping experience section today!
