A flaw in Apple's mobile operating system may have left millions of iPhone and iPad users vulnerable to hackers.
Research published by ZecOps, a mobile security firm, said a bug in the Mail app made devices susceptible to sophisticated attacks.
The firm said it had "high confidence" the bug has been used to exploited at least six high-profile victims.
An Apple spokesperson told Reuters a fix would be included in upcoming software updates.
In a statement, Apple said: "We have thoroughly investigated the researcher's report and, based on the information provided, have concluded these issues do not pose an immediate risk to our users. The researcher identified three issues in Mail, but alone they are insufficient to bypass iPhone and iPad security protections, and we have found no evidence they were used against customers."
ZecOps reported the bug to Apple in March. The tech giant had not previously known about the issue.
To exploit this flaw, hackers would send a seemingly blank message to an iPhone or iPad users Mail account - the email app on iOS devices. When the email was opened it would crash the app forcing the user to reboot. During the reboot, hackers would be able to access information on the device.
What makes this attack different from other hacks is users do not need to download any external software or visit a website that contains malicious software (malware). Typically hacks require some action on the part of the victim - those steps make possible to trace the origin of the attack.
The researchers said the bug could be exploited even on recent versions of iOS.
ZecOps claimed it had found evidence that the bug was used to attack well-known targets including individuals from a Fortune 500 company in North America, an executive from a mobile carrier in Japan, employees of technology companies in Saudi Arabia and Israel, a European journalist and an individual in Germany. The firm would not disclose the identities of the victims.
Apple products are typically considered to be more secure than other mobile devices. Experts say this shows how difficult it can be to spot underlying vulnerabilities.
The company said: "These potential issues will be addressed in a software update soon. We value our collaboration with security researchers to help keep our users safe and will be crediting the researcher for their assistance"
Latest Stories
-
Bawumia joins thousands in Kumasi for burial prayers for Ashanti Regional Imam
42 seconds -
Blue Gold Bogoso Prestea Limited challenges government actions in court
27 minutes -
Patrick Atangana Fouda: ‘A hero of the fight against HIV leaves us’
1 hour -
Trinity Oil MD Gabriel Kumi elected Board Chairman of Chamber of Oil Marketing Companies
2 hours -
ORAL campaign key to NDC’s election victory – North America Dema Naa
2 hours -
US Supreme Court to hear TikTok challenge to potential ban
2 hours -
Amazon faces US strike threat ahead of Christmas
3 hours -
Jaguar Land Rover electric car whistleblower sacked
3 hours -
US makes third interest rate cut despite inflation risk
3 hours -
Fish processors call for intervention against illegal trawling activities
3 hours -
Ghana will take time to recover – Akorfa Edjeani
4 hours -
Boakye Agyarko urges reforms to revitalise NPP after election defeat
4 hours -
Finance Minister skips mini-budget presentation for third time
4 hours -
‘ORAL’ team to work gratis – Ablakwa
4 hours -
Affirmative Action Coalition condemns lack of gender quotas in Transition, anti-corruption teams
4 hours