Follow us on
Google News

How can one hack any Apple Webcam?

Mohit Gadhok
I am a hardcore tech lover, with experience of 8 years in the industry.

Must read

13000 Phone running on the same IMEI Number – Meerut Cyber Police

Making it harder to follow and recognize taken cell phones, the police in Uttar Pradesh has found there are in excess of...

Goodbye WeTransfer as Indian Government Department of Telecommunication(DOT) Bans WeTransfer

The Department of Telecommunications (DoT) has prohibited the well-known record sharing site The DoT has referred to national intrigue and open...

USA state Arizona taking Google to court

The US province of Arizona recorded a claim Wednesday blaming Google for submitting extortion by being beguiling about social event area information....

Amazon India sellers to get free COVID19 insurance

Amazon India reported that it is sans giving COVID-19 medical coverage to every one of its dealers in the nation. The protection...

Even while having a great name for security, Apple has been a little disappointing for its users; the reason of which has been its Safari browser.

Very recently, a security researcher brought in light, a way how an attacker could exploit three Safari bugs in succession and acquire a target’s webcam and microphone on iOS and macOS devices.

“Safari encourages users to save their preferences for site permissions, like whether to trust Skype with microphone and camera access,” says Ryan Pickren, the security researcher who opened about the vulnerabilities to Apple.

“So what an attacker could do with this kill chain is create a malicious website that from Safari’s vision could then turn into ‘Skype’. And then the malicious site will have all the access that you previously granted to Skype, which means an attacker could just begin getting pictures of you or turn on your microphone or even screen-share,” he further added.

“I just kind of hammered the browser with really weird cases until Safari got confused and gave an origin that didn’t make sense,” he states. “And eventually the bugs could all kind of bounce from one to the next. Part of this is that some of the bugs were old flaws in the WebKit core from years ago. They probably were not as dangerous as they are now just because the stars lined up on how an attacker would use them today.”

Pickren submitted seven vulnerabilities to Apple’s bug bounty program in mid-December and says he got a response that the company had validated the bugs the next day.

While an attacker would only destroy three of the bugs to take over webcams in the chain Pickren envisioned, he got other, related flaws along the way that he submitted too. Pickren says that part of the reason he encountered so many extra bugs was that he was looking for an attack chain that would work on both iOS and macOS—and Safari is designed slightly differently for each.

Apple widened its bug bounty initiative in December to accept vulnerabilities across more of its products and services.

Follow us on Google News

More From Tech

Subscribe to our newsletter

To be updated with all the latest news, offers and special announcements.

- Advertisement -

Latest article

Siberia sheds 20 thousand tons of diesel from the power plant, Putin announced state emergency

The state of emergency in Russia has been announced by President Vladimir Putin after the leakage of 20 thousand tons of diesel...

America made the Coronavirus vaccine? Donald Trump made this big claim

While the entire world is plagued by Coronavirus infection, US President Donald Trump has made a big claim about its vaccine. He...

13000 Phone running on the same IMEI Number – Meerut Cyber Police

Making it harder to follow and recognize taken cell phones, the police in Uttar Pradesh has found there are in excess of...

A big step by Facebook to Label State-Controlled Media On Facebook

Facebook will begin marking Russian, Chinese, and other state-controlled media associations, and later this late spring will hinder any promotions from such...

Fresh investment worth $1.2 billion earned by Reliance Jio from Abu Dhabi Mubadala

Abu Dhabi-based sovereign financial specialist Mubadala Investment Company will contribute $1.2 billion or around Rs 9,093.60 crore for a 1.85% value stake...