- Has not found evidence that the error has been exploited.
- Has not found evidence that the error has been exploited.
It was Wednesday this week that security company ZecOps felt they had not only revealed a giant hole in the Apple Mail app for iPhone and iPad, but that the bug had been exploited for several years.
Apple believes it has not been proven that the error has been exploited
They probably know this because they have had customers who have been hit by the hole, but Apple says they do not know that the error has been exploited:
"We have looked into the report thoroughly and based on the information provided, we have concluded that these issues do not pose an immediate risk to our users. The researcher identified three problems in Mail, but alone they are not sufficient to circumvent iPhone and iPad security protection, and we have not found any evidence that they were used against customers. ”
Claims the hole has been exploited since 2018
This goes directly against ZecOps' statement that "hacking against a number of US allies, including Japan, Germany, Saudi Arabia and Israel," should have taken place.
As we reported on Wednesday this week: "attacks must have been confirmed using the bug all the way back in January 2018."
In any case, we have difficulty understanding how Apple can know its ZecOps customers, but on the other hand, it is unusual for such a large company, so quickly, to say that a security hole like this has not been exploited - best. Is Apple trying to hide its own flaws, or is ZecOps trying to make a name for itself?
We hope ZecOps is stripped of all credibility for what they badly said didn't matter, and if Apple is wrong, that they apologize and fix the bug right away. In any case, they must fix the error immediately.