Views: 22 Author: Site Editor Publish Time: 2019-07-31 Origin: BBCnews
The Project Zero team was established in July 2014 to uncover previously undocumented cyber-vulnerabilities. It has previously alerted Microsoft, Facebook and Samsung, among
others, to problems with their code.
Urgent updateApple's own notes about iOS 12.4 indicate that the unfixed flaw could give hackers a means to crash an app or execute commands of their own on recent iPhones, iPads and iPod
Touches if they were able to discover it.
Apple has not commented on this specific issue, but has urged users to install the new version of iOS, which addresses Google's other discoveries as well as a further range of glitches and threats.
"Keeping your software up to date is one of the most important things you can do to maintain your Apple product's security," it said in a statement.News site ZDnet - which was first to report the matter - noted that the level of detail shared by Google about the other bugs could be enough to let bad actors craft exploits to take
advantage of them. Users should download iOS 12.4 "with no further delay," it added.
One of the two Google researchers involved - Natalie Silvanovich - intends to share more details of her findings at a presentation at the Black Hat conference in Las Vegas next month.