A Trojan horse to phish iCloud passwords lurks in an iOS Mail bug<article>
<section class="page">
<p>
When we get complacent, we get bad about security. The more we’re prompted by something irritating that can be dismissed only by entering a password
again, the more likely we are to not pay attention to what’s asking. I speak, of course, of Apple’s seemingly random and sometimes frequent iCloud login popup messages in iOS.</p><p>
A vulnerability of sorts has been uncovered in HTML handling in Mail in iOS that leverages our desire to ignore a message by just giving it what it wants. It’s not an exploit that allows remote control or system access. Rather, it’s a form of Trojan horse that engages in phishing, fooling the unwary and the wary alike into entering a credential in an illegitimate place that can be used elsewhere.</p><p class="jumpTag"><a href="/article/2934455/a-trojan-horse-to-phish-icloud-passwords-lurks-in-an-ios-mail-bug.html#jump">To read this article in full or to leave a comment, please click here[/url]</p></section></article>
Source:
A Trojan horse to phish iCloud passwords lurks in an iOS Mail bug
