Security firm FireEye announced that in an ancient code of advertising platform AdSage is a backdoor, which has now resulted in a major leak that criticism can pick up malicious information from iPhones and iPads. To date there appears to be no abuse of the leak, but the code is to be found in 2846 apps. FireEye Apple has already informed.
advertising platform mobi saga has now long been made available a new version where not backed by more can be found. The problem is that app developers should update itself that code of mobi saga and the advertising that is not themselves.
Of the 2846 applications which have the code with the critical leak have about 900 a connection established with the server of Mobi Sage. When this connection is made, abuse may be made of the leakage and malicious code can be loaded on the aircraft. This audio can be recorded screenshots are made, but also external apps can be installed via side loading. This is only possible if the app is running and not when it is running in the background.
Although there is no reason to assume that all abuse is made of the leak, it can still happen in the near future. The question then is what Apple is going to do, whether it for instance to remove all 2846 apps. Apple has so far not responded to the leak.
No comments:
Post a Comment