Published 12:08 IST, September 9th 2019
Apple slams Google for creating 'false impressions' about iOS security
Apple refuted claims made by Google's security researcher that iPhones were hackable for years due to software flaws in iOS. A few days ago, Google published a
Advertisement
Apple issues a statement
Apple refuted claims made by Google's security researcher that iPhones were hackable for years due to software flaws in iOS. A few days ago, Google published a blog post about vulnerabilities in iOS that Apple patched in February earlier this year. Responding to Google's blog post, Apple issued a statement saying that it heard from customers who were concerned about claims made by Google. Apple clarified that ' sophisticated attack was narrowly focused' unlike a wider exploit of iPhones as described by Google. Apple stated that attack affected less than a dozen websites focusing on content pertaining to Uighur community.
"Regardless of scale of attack, we take safety and security of all users extremely seriously," Apple statement reads.
Advertisement
Furrmore, statement continued that Google published its blog post six months after Apple released iOS patches. Apple also slammed Google, saying that it creates 'false impression' of mass exploitation. Apple also said that Google's blog post stokes fear among iPhone users that security of ir devices had been compromised. Apple also said that Google created false impressions of compromise to privacy of iPhone users in real-time.
"All evidence indicates that se website attacks were only operational for a brief period, roughly two months, t “two years” as Google implies. We fixed vulnerabilities in question in February — working extremely quickly to resolve issue just 10 days after we learned about it. When Google approached us, we were already in process of fixing exploited bugs," Apple added.
Advertisement
What was issue?
Towards end of August, a security researcher at Google's Project Zero division claimed that certain malicious websites could compromise security of victim's iPhone. As per Google, flaw could be exploited by visiting those websites. If exploited, those websites could also hack into iPhone. Google claimed that hack was possible by exploiting previously undiscovered security vulnerabilities in iOS.
Google Project Zero team said that company's Threat Analysis Group (TAG) found out certain compromised websites. Security researchers at Google said that y collected five iPhone exploit chains between iOS 10 and iOS 12, suggesting that a group of hackers could have targetted iPhone users for two years or so. Google had said that it reported issues to Apple with a 7-day deadline on 1st February. Google also ted that Apple n released iOS 12.1.4 patch on 7th February 2019.
Advertisement
11:15 IST, September 9th 2019