Apple Mail flaw could pose risk to iCloud passwords<article>
<section class="page">
<p>
A security researcher says a vulnerability in Appleās mobile email application could be used to trick someone into divulging their iCloud password.</p><p>
Prague-based
Jan Soucek published
proof-of-concept code that shows how he could send an email to someone with HTML code that resembles the iCloud login pop-up window. Soucek then receives an email containing the password.</p><p>
The vulnerability allows remote HTML content to be loaded in an email, which replaces the content of the email message. Soucek wrote he then built a functional password collector using HTML and CSS. He also published a
demonstration video.</p><p class="jumpTag"><a href="/article/2934552/apple-mail-flaw-could-pose-risk-to-icloud-passwords.html#jump">To read this article in full or to leave a comment, please click here[/url]</p></section></article>
Source:
Apple Mail flaw could pose risk to iCloud passwords
