Hacker finds out security flaw in Apple iPhones, iPads and MacBooks that gives access to webcams | HT Tech
Home Tech Tech News Hacker finds out security flaw in Apple iPhones, iPads and MacBooks that gives access to webcams

Hacker finds out security flaw in Apple iPhones, iPads and MacBooks that gives access to webcams

The vulnerability could let a hacker quietly activate the camera and microphone of iPhones, iPads and MacBooks to click images, shoot videos and record audio.

By: HT CORRESPONDENT
| Updated on: Apr 04 2020, 11:20 IST
Icon
The vulnerability could let a hacker quietly activate the camera and microphone of iPhones, iPads and MacBooks to click images, shoot videos and record audio.
The vulnerability could let a hacker quietly activate the camera and microphone of iPhones, iPads and MacBooks to click images, shoot videos and record audio. (REUTERS)
The vulnerability could let a hacker quietly activate the camera and microphone of iPhones, iPads and MacBooks to click images, shoot videos and record audio.
The vulnerability could let a hacker quietly activate the camera and microphone of iPhones, iPads and MacBooks to click images, shoot videos and record audio. (REUTERS)

Apple, until last month was said to have a Safari browser vulnerability in its iPhones, iPads and MacBook devices that allowed hackers to access the microphone and webcam. As reported by Wired, the hacker could've used three Safari bugs in succession to gain access in iOS and macOS devices. Although the company patched this vulnerability in January and March updates, before it, all users needed to do was to click on a malicious link once to allow hackers to snoop in remotely.

This means that the hacker can quietly activate the camera and microphone to click images, shoot videos and record audio.

"Safari encourages users to save their preferences for site permissions, like whether to trust Skype with microphone and camera access," said Ryan Pickren. Pickren is a security researcher who found out the vulnerability and informed it to Apple.

"So what an attacker could do with this kill chain is make a malicious website that from Safari's perspective could then turn into 'Skype'. And then the malicious site will have all the permissions that you previously granted to Skype, which means an attacker could just start taking pictures of you or turn on your microphone or even screen-share," added Pickren who alerted Apple about the bugs in December last year.

Also read: Apple may improve its password manager, iCloud Keychain with iOS 14

It has been mentioned that when you give a certain permission to websites in Safari browser, the browser applies it to all the variations of that particular website for instance https://www.example.com, http://example.com, and fake://example.com. Hackers could create special URLs using the vulnerability that would trick Safari in a similar way.

The hacker states that some bugs were years old. "Part of this is that some of the bugs were really, really old flaws in the WebKit core from years ago. They probably were not as dangerous as they are now just because the stars lined up on how an attacker would use them today," said Pickren.

On a related note, Apple's recently launched iPad models also come with T2 security chip that disconnects the microphone on a hardware level when the device is closed while using with a MFi compliant cover case. The 'hardware disconnect' feature in already there in MacBooks and doesn't disconnect the webcam as the field of view is anyway obstructed when the lid is closed.

Catch all the Latest Tech News, Mobile News, Laptop News, Gaming news, Wearables News , How To News, also keep up with us on Whatsapp channel,Twitter, Facebook, Google News, and Instagram. For our latest videos, subscribe to our YouTube channel.

First Published Date: 04 Apr, 11:12 IST
Trending: bored of your instagram explore feed? here’s how you can change, reset it mrbeast vs t-series: popular youtuber on the verge of surpassing indian music label in subscribers whatsapp update: new ‘private mention’ feature for status updates coming soon- details how to hide your instagram online status from others solar storm alert: cme could hit earth and spark a geomagnetic storm today, says noaa how to change whatsapp font style and font size in chat window google wallet introduces 'linked passes' setting: what is it and how to use the new feature meta ai: mark zuckerberg unveils features of whatsapp and instagram’s ai chatbot google wallet to launch in india: what is it and how will it be different from google pay apple releases macos sonoma 14.5 public beta 2 update; check new features and know how to get it
NEXT ARTICLE BEGINS

Tips & Tricks

WhatsApp banned
WhatsApp banned my number. What’s the solution? Step-by-step guide to ‘unban’ your account
Consider Tonnage
Don't forget these 5 things while buying ACs online
Productivity
Otter AI: How to use this AI meeting assistant app to automatically take notes, transcripts, more
Pixel 8 Pro's Pro
Know how to master Pro Controls on the Google Pixel 8 Pro - check top 4 tips
ChatGPT Plus
How to edit images generated by DALL-E in ChatGPT: Step-by-step guide

Editor’s Pick

Digi Yatra
Digi Yatra users, delete the old app right now- Here’s how to download the new app and use it at airports
iPhone 15
iPhone 16 leaks summarised: Colours, A-series chip and what more to expect from Apple in 2024
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
HDFC Bank alerts about a few common ‘bad habits’ of smartphone users that make it easy for them to fall prey to hacking attempts and scams.
Online scams: 5 habits of smartphone users that make life easy for hackers, warns HDFC Bank
Moto Edge 50 Pro
Motorola Edge 50 Pro review: Should you buy this new AI smartphone under 35,000?

Trending Stories

Dbrand
MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
GTA_6
GTA 6 leaks: What we know so far about Grand Theft Auto 6
STScI-01HFQ5YXZ04PF608HQB0KRTF3S
10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
Google Vids
Google Vids- All details about this new AI video app and how to use it
iPhone 13
Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
keep up with tech

Gaming

GTA 6: From main protagonists to supporting figures, all the key characters in Grand Theft Auto 6
GTA 6: From main protagonists to supporting figures, all the key characters in Grand Theft Auto 6
Garena Free Fire MAX Redeem Codes for April 19
Garena Free Fire MAX Redeem Codes for April 19: SCAR Ring event bring menacing weapon skins!
Garena Free Fire Redeem Codes for April 19
Garena Free Fire Redeem Codes for April 19: OB44 update rolled out, know what’s new
GTA 6 trailer: Top 5 iconic cars spotted in the Grand Theft Auto 6’s Vice City
GTA 6: Top 5 iconic cars spotted in the trailer set to dominate vice city's streets
Garena Free Fire MAX redeem codes for April 18
Garena Free Fire MAX Redeem Codes for April 18: OB44 update brings exciting changes!

Best Deals For You

Unbeatable Launch Offer
Redmi Buds 5 launched in India with AI Voice Enhancement; Check features, price and more
Oppo F23
10 Best Oppo phones under 25000: Performance without the premium price
iQOO 12
iQOO anniversary offers on iQOO 12, iQOO Neo 9 Pro and more announced; Check details
OnePlus 12 Open Sales in India
OnePlus 12 open sale announced! Check deal, specs and features here
Apple MacBook Air Laptop M1
10 best laptops under 1 lakh: ASUS, Dell to Apple, here is a Christmas gift guide for you

    Trending News

    MKBHD takes tough stand after Dbrand makes racist comment on Indian customer [Update]
    Dbrand
    GTA 6 leaks: What we know so far about Grand Theft Auto 6
    GTA_6
    10 stellar images shot by NASA’s $10 billion James Webb Space Telescope
    STScI-01HFQ5YXZ04PF608HQB0KRTF3S
    Google Vids- All details about this new AI video app and how to use it
    Google Vids
    Apple iPhone 13 available at discounted price of Rs. 52,990 on Amazon- Check details
    iPhone 13

    Trending Gadgets

    Mobiles Laptops Tablets