Attackers can potentially use it to read, modify and delete emails on Apple’s iPhones and iPads. Whether they can cause further damage is still being examined.
What happened?
The e-mail program, which is installed on Apple’s smartphones and tablets, has two serious security vulnerabilities in the iOS operating system, since version 6 inclusive. The iOS 6 version was released back in 2012, the current version is iOS 13. Apple’s own mail program for computers, which runs on the MacOS operating system, is not affected by this vulnerability.
The vulnerability allows attackers to compromise the device just by sending an email. After that, they can read, modify and delete emails on the device. The perfidious: With older versions of iOS, it is sufficient to open the e-mail. It is not necessary to click on a link or attachment as in classic phishing emails. It is even worse with the current iOS 13: there the mail only has to arrive in the mailbox. Hackers can then also access the device unopened.
The German Federal Office for Information Security (BSI) assesses the vulnerabilities as very critical . Apple said that the vulnerabilities “do not pose a direct danger” to users. The problem will soon be fixed with a software update. It is not yet clear when exactly that will be. (The next version of the mobile operating system is currently in beta testing.)
How can you protect yourself?
Detailed instructions on how to delete or delete the app. You can find out how to deactivate synchronization here, among other things.
