Security experts are warning iPhone and iPad users not to install the latest update (iOS 12.4) on their devices until Apple provides a fix for a potentially huge vulnerability.
The rumoured flaw in the latest software, dubbed SockPuppet, could allow cyber criminals to take control of any device running iOS 12.4. Vulnerabilities in software are always a possibility, and are almost part of our everyday technological life, but the shocking thing is that Apple already fixed this particular software flaw in the previous version of iOS.
Somehow, the latest update unpatched the patch…
Apple are expected to release a fix for this vulnerability within the next few days, but until then users are advised to hold off updating their phone software.
For a hacker to take advantage of SockPuppet, they would require you to have installed a dodgy app or to have clicked on a suspicious link in an email or on a website. So if you have already updated to 12.4, you can reduce the risk of being hacked for the next few days by not installing any new apps, and being very careful about the links you click on.
According to Forbes, SockPuppet can affect the iPhone 5s and later, the iPad Air and later, and the iPod Touch 6th Gen and later. It gives hackers access to system privileges, and would allow the remote installation of ransomware, malware, spyware or almost any other piece of software. It would also give them access to usernames, passwords and other supposedly secure information.