Jamf, a company specializing in cybersecurity for Apple devices, spoke about the dangerous vulnerability CVE-2024-44131, which was discovered in iOS, iPadOS and macOS.
She turned the app to secretly access sensitive iCloud data and then send it to the server.
When a user moved or copied files in a standard application FilesA third-party application running in the background could intercept these actions and redirect files to folders under its control. The files could then be sent to a remote server. All this treatment is done without the user’s knowledge.
Apple has addressed this vulnerability in iOS 18, iPadOS 18, and macOS 15 Sequoia. It is not specified in which versions of the system the problem was discovered. Also, Apple and Jamf did not indicate that they were aware of cases of exploitation of this vulnerability. It may have never been used.
Interestingly, the security updates for macOS Sonoma 14.7.1, iOS 17.7.1 and iOS 17.7.2 do not mention CVE-2024-44131. This means that users will have to install a new version of the OS to fix the problems. [Macworld]
Source: Iphones RU
I am a professional journalist and content creator with extensive experience writing for news websites. I currently work as an author at Gadget Onus, where I specialize in covering hot news topics. My written pieces have been published on some of the biggest media outlets around the world, including The Guardian and BBC News.
