New Bug In Apple Email Software Makes Your Passwords Vulnerable
Email users on iOS 8 can be in danger of losing their passwords to a newly discovered bug in Apple’s mobile operation system.
The flaw discoverer is a security researcher, Jan soucek, according to The Register.
Soucek has reportedly found that Apple’s faulty coding in incoming emails cannot stop hackers from loading malicious content inside an email. According to the researcher, Apple has missed a key line in code of incoming emails:
The hackers can send you an email that will appear to you as if it were from a trusted source, but as soon as you open it, they will be in a position to steal your password by making you fill a fake form.
“Back in January 2015 I stumbled upon a bug in iOS’s mail client, resulting in HTML tag in e-mail messages not being ignored,” Soucek says.
“It was filed under Radar #19479280 back in January, but the fix was not delivered in any of the iOS updates following 8.1.2.”
The following video gives an explanation about how the bug works.
The researcher says he did contacted Apple to share the info about the bug, but Cupertino was chiefly unresponsive.