x PhoneArena is looking for new authors! To view all available positions, click here.
  • Home
  • News
  • Beware: a security hole in non-jailbroken iOS devices allows apps to "keylog" you

Beware: a security hole in non-jailbroken iOS devices allows apps to "keylog" you

Posted: , by Peter K.

Tags:

Beware: a security hole in non-jailbroken iOS devices allows apps to "keylog" you

It seems that a new breach in iOS allows malicious apps to "sniff" and record touch input, as well as key press events, enabling wrongdoers to take advantage of a user's valuable information. According to FireEye,a network security company that discovered the flaw, even non-jailbroken iOS mobile devices are sucseptible to this security threat, even these that run the latest version of the platform – 7.0.4, 7.0.5, 7.0.6.

FireEye explains that they have developed a "monitoring app", which takes advantage of both the multitasking and the "background app refresh" features of iOS. Once started, the app disguises itself as, say, a music app. This prevents the system from suspending the malicious software, which collects all user events and sends them to a remote server.

Fortunately, users can thwart any event monitoring by opening the iOS task manager and manually closing any suspicious apps that are running on their device. FireEye also claims that it's cooperating with Apple on the issue.

Hopefully, a fix for the security breach will be implemented into the upcoming version 7.1 of the iOS mobile platform.

source: FireEye via AppleInsider

8 Comments
  • Options
    Close




posted on 25 Feb 2014, 05:10 3

1. blingblingthing (Posts: 443; Member since: 23 Oct 2012)


Bu bu bu none of the million apps on the app store are viruses / Trojans / sarcasm .

Seriously, I'm tired of reading this and some apple fan telling me android apps need anti virus software.

posted on 25 Feb 2014, 05:54 1

2. Finalflash (Posts: 1802; Member since: 23 Jul 2013)


Then stop listening to them, only the idiotic ones even claim that any more. If you aren't a complete idiot you'll know how to manage your exposure on any platform.

posted on 25 Feb 2014, 07:32

6. blingblingthing (Posts: 443; Member since: 23 Oct 2012)


I like to listen to them and then mention these articles. You really think with 1 million apps on the store, none are malicious?

posted on 25 Feb 2014, 10:34

8. Ashoaib (Posts: 2286; Member since: 15 Nov 2013)


So called secure OS over andriod... this report proves security is not the measure of ranking for ios

posted on 25 Feb 2014, 06:18

3. RaKithAPeiRiZ (Posts: 1352; Member since: 29 Dec 2011)


This comes just after apple released patchwork for the SSL vulnerability , i wonder how safe ios now really is

posted on 25 Feb 2014, 07:13

5. Droid_X_Doug (Posts: 5866; Member since: 22 Dec 2010)


There would seem to be a number of undisclosed zero-day hacks, given the services advertised by white-hat hackers for government agencies.

posted on 25 Feb 2014, 06:46 1

4. PapaSmurf (Posts: 8665; Member since: 14 May 2012)


I updated my iPad Mini because of a security flaw.. Damn it Apple.

posted on 25 Feb 2014, 08:16 1

7. Droid_X_Doug (Posts: 5866; Member since: 22 Dec 2010)


Magic 8-Ball says another update is in your future.

Want to comment? Please login or register.

Latest stories