The U.S. government warned Apple gadget owners Thursday to look out for hackers exploiting a newly revealed vulnerability in the mobile operating system iOS.
The so-called “Masque Attack” was disclosed earlier this week by the network security firm FireEye and allows a hacker to replace an iOS app with malware, according to an alert posted on the website of the U.S. Computer Emergency Readiness Team, which operates under the Department of Homeland Security.
MORE: How to Avoid the ‘Biggest’ iPhone Malware App Attack Yet
“This technique takes advantage of a security weakness that allows an untrusted app—with the same “bundle identifier” as that of a legitimate app—to replace the legitimate app on an affected device, while keeping all of the user’s data,” the warning states. “This vulnerability exists because iOS does not enforce matching certificates for apps with the same bundle identifier.”
The agency warns iOS users not to install apps from sources other than Apple’s official app store or their own organizations, among other precautions.
- What We Know So Far About the Deadly Earthquakes in Turkey and Syria
- Beyoncé's Album of the Year Snub Fits Into the Grammys' Long History of Overlooking Black Women
- How the U.S. Shot Down the Alleged Chinese Spy Balloon
- Effective Altruism Has a Toxic Culture of Sexual Harassment and Abuse, Women Say
- Inside Bolsonaro's Surreal New Life as a Florida Man—and MAGA Darling
- 'Return to Office' Plans Spell Trouble for Working Moms
- 8 Ways to Read More Books—and Why You Should
- Why Aren't Movies Sexy Anymore?
- How Logan Paul's Crypto Empire Fell Apart