【eroticized woman】

A newly disclosed iPhone vulnerability gives hackers yet another reason to love email.

According to the San Francisco-based security firm ZecOps,eroticized woman bad actors have discovered a way to attack iOS devices via their default email app. And here's the real kick to the guts: In some cases, you don't even have to be tricked into opening the email. The damage is done simply by your phone downloading the malicious email in the background.

ZecOps published details of the vulnerability on Monday, claiming it has seen the attack "widely exploited in the wild." In other words, ZecOps is saying this isn't just some theoretical bug. Rather, people have actually used it in targeted attacks. The vulnerability affects, to some degree, every version of Apple's operating system from iOS 6 and up.

---

You May Also Like

---

---

"The vulnerability allows remote code execution capabilities and enables an attacker to remotely infect a device by sending emails that consume significant amount of memory," explains ZecOps. "The vulnerability can be triggered before the entire email is downloaded, hence the email content won’t necessarily remain on the device."

Phones running iOS 13 are particularly vulnerable, as they reportedly don't even need to open the email for it to do its work. If you're running iOS 12, you're a tad bit better off — you have to click the email first, but your phone is ultimately still at risk if you do so.

Mashable Light Speed Want more out-of-this world tech, space and science stories? Sign up for Mashable's weekly Light Speed newsletter. By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy. Thanks for signing up!

We reached out to Apple to both confirm ZecOps report and to determine when, if ever, it plans to issue a patch. Apple confirmed that a vulnerability in Mail is patched in the iOS 13.4.5 beta, which is out now, and will be included in an upcoming software update.

This, reportedly, is what a failed attack looks like on an iPhone. Credit: zecops

At present, assuming you're not running a beta version of iOS, ZecOps says there is no way to prevent this attack other than to disable the default iOS mail app.

So, should you actually be worried about this? Well, that depends. Are you someone with valuable information that a nation-state might want a piece of? If so, then possibly.

Victims of this attack, claims ZecOps, include "individuals from a Fortune 500 organization in North America," "an executive from a carrier in Japan," "a VIP from Germany," "[managed security service providers] from Saudi Arabia and Israel," and "a Journalist in Europe."

SEE ALSO: As coronavirus spreads, yet another company brags about tracking you

In other words, your average Joe doesn't need to stress about this too much.

Still, it's worth keeping in mind that no operating system is completely hack-proof. And yes, that even includes Apple's. Oh yeah, and it also serves as a stark reminder that you should always make sure your phone is running the latest version of iOS — whether you're an average Joe or not.

Topics Apple Cybersecurity iOS iPhone

• Games
• Digital Culture
• Science
• Entertainment
• Shopping
• Tech
• Life
• Social Good

• They met on Tumblr, and their relationship outlasted their accounts
• August Wilson on the Legacy of Martin Luther King by The Paris Review
• Redux: Your Name Means Open by The Paris Review
• Eating Oatmeal with Alasdair Gray by Valerie Stivers
• Best fitness deal: The Merach R50 rowing machine is 35% off at Amazon
• The Exceptional Dovey Johnson Roundtree by Tayari Jones
• Dice Roll: The Phantom Gambler by Michael LaPointe
• Goatherd, Storyteller, Master by Brian Ransom
• SpaceX will try to achieve 2 impressive feats on Monday
• Goatherd, Storyteller, Master by Brian Ransom

• Boy Scouts to drop 'boy' from namesake program upon welcoming girls
• Go to infinity and beyond with this 'Toy Story'
• Researchers see galaxies merge 1.5 billion years after the Big Bang
• 'Fortnite' Season 4: What's new and how you can get started right now
• We need to talk about Thanos' population problem in 'Avengers: Infinity War'
• Why Blake Lively is suddenly following 27 normals called Emily on Instagram
• Mark Zuckerberg sounds exactly like Barack Obama in his F8 keynote
• Gains in reducing America's smog problem have hit a dramatic slowdown
• Producer challenges people to write 'Simpsons' episode solving Apu problem
• How guests will be expected to behave at Prince Harry and Meghan Markle's wedding

• Best air purifier deal: Save $300 on the Dyson HEPA Big + Quiet air purifier
• Objects of Despair: Fake Meat by Meghan O’Gieblyn
• Robert Lowell Dressed as Santa by Saskia Hamilton
• Trains by Jill Talbot
• Celtic vs. Bayern Munich 2025 livestream: Watch Champions League for free
• Comics as System by Ivan Brunetti
• Redux: A Smile Like Collapsed Piano Keys by The Paris Review
• On Classic Party Fiction by Elisa Gabbert
• Hands on with Lenovo's 'rollable' display laptop at CES 2025
• Behind the Scenes of ‘The Paris Review Podcast’ by The Paris Review

• Best robot vacuum deal: Save $350 on the Eufy X10 Pro Omni
• Entering Infinity with Yayoi Kusama by The Paris Review
• On Desolation: Vija Celmins’s Gray by John Vincler
• What Was It About Animorphs? by James Frankie Thomas
• SpaceX is so close to turning its rocket headquarters into an actual city
• Nellie Oleson, C’est Moi by Anthony Madrid
• They Think They Know You, Lionel Messi by Rowan Ricardo Phillips
• Redux: So Much Loneliness in That Gold by The Paris Review
• Sinner vs. Shelton 2025 livestream: Watch Australian Open for free
• Redux: A Smile Like Collapsed Piano Keys by The Paris Review