Security has become essential in our day to day. The protection that we configure in our accounts and services is a sign that we care about our information. Additionally, as concern grows, companies provide more and more tools and research to develop stricter security protocols. However, sometimes vulnerabilities continue to be found in systems. A few hours ago the security company ZecOps announced the discovery of two new vulnerabilities in the iOS Mail app that allowed to launch attacks without the need to open these emails and in the background. Apple has already patched these vulnerabilities in the iOS 13.4.5 beta.
Updating is the basis of avoiding vulnerabilities such as Mail
The scope of the attack is to send a specially crafted email to the victim's mailbox that allows them to activate the vulnerability in the context of the iOS MobileMail application in iOS 12 or maild in iOS 13.
The cybersecurity company ZecOps Research and Threat Intelligence released the two new vulnerabilities in the iOS Mail app through a statement. In one of them, the attackers could send an email directly to the victim's mailbox and activate big lines of code remotely to 'infect' different devices. These scripts increase the consumption of the RAM memory of these devices, preventing you from using the RAM for processes in which the user wants to use it.
Furthermore, the existence of true multitasking on iPhones and iPads makes this script can be activated even without the victim entering the email in question. However, these emails are too heavy and many email services discard them just as they are sent, so there is no indication that many users have been affected. Although there is evidence that a worker from a large US company, some famous European and Asian computer security companies have been affected by hackers using this vulnerability.
Apple has already closed these vulnerabilities in the Mail app in the iOS 13.4.5 beta. That is why we will be safer when it is officially launched and we correct these two errors that could cost many a good headache.