“The gap is safe. Apple has shown an iOS vulnerability that existed on March 20, 14:32: The Apple Passwords hole has existed for many months (photo: Reuters/Dado Ruvic) Apple has corrected an error in iOS 18.2 Passwords that within three months”, – WRITE ON: ua.news
Dira in Apple Passwords Security has existed for many months (photo: Reuters/Dado Ruvic)
Apple Passwords users have been subjected to phishing attacks for at least three months due to vulnerability, which was corrected only with iOS 18.2.
Apple has corrected an error in iOS 18.2 Passwords, which for three months, starting with the issue of iOS 18, made users vulnerable to phishing attacks.
“The user in the privileged position on the network can obtain a leakage of confidential information. This problem is solved with HTTPS when sending information through the network, ”Apple reports in the problem.
According to 9TO5Mac, the problem was that the Passwords program sent uncepted requests for logos and badges that it showed next to the sites that your saved passwords were associated with. The absence of encryption meant that the attacker in the same Wi-Fi network, such as at the airport or cafe, could redirect the user browser to a similar site to steal the credentials.
This problem was first identified by MYSK safety researchers. In the description of the video on YouTube, which shows a mistake, MYSK researchers say that they first reported vulnerability in September.
“Although Apple corrected it in iOS 18.2, the report remained open, and Apple only recently acknowledged that she had corrected the bug. That is why we could not reveal this problem before, ”the researchers say.