They warn two vulnerabilities in Apple fleas!
Recently, Two security failures have been discovered which affect a wide range of Apple devices, iPhones and iPads to Mac. These vulnerabilities, known as slap and flopThey could allow malicious attackers to access sensitive information from users. The slaps and the flop work similar to Specter and Meltdown, two vulnerabilities that will affect Intel processors and other brands in 2018.
That are slaps and flop and which devices are affected
LAP (Specifications attacks via the load prediction) and the flop (false load exit forecasts) are two security failures discovered by researchers from the Georgia Institute of Technology. These vulnerabilities They are based on a technique used by Apple and other flea manufacturers to accelerate data processing, known as speculative execution.
The speculative execution is that the chip tries to anticipate future possible orders and to prevent the data necessary to execute them. If an attacker manages to inject malicious data into these processes, he can access the memory content that should not be accessible.
How do slap and flop work?
Weakness affects the safari. In the case of safari, each tab must be protected independentlyPrevent a website on a tab from accessing data from another website open to another tab.
With Slap, if an attacker visits a user a committed website, he could access data from any other Safari tab that is open. It means that An attacker could read emails, see locations in Apple Maps, access banking data and much more.
Flop has a similar operation, but it is more powerful and affects both chrome and safari.
It is important to note that these attacks do not require the installation of malware on the device. Failures are used in Apple code and are difficult to detect.
What devices are vulnerable?
Researchers have confirmed that the following devices are vulnerable to slaps and flop:
- iPhone: iPhone 13, iPhone 14, iPhone 15, iPhone 16, third generation iPhone SE.
- iPad: IPad Air models from 2021, iPad Pro 2021 models, iPad Mini models of 2021.
- Mac: MacBook Air models from 2022, MacBook Pro 2022 models, Mac Mini Models of 2023, Mac Studio * 2023 models, 2023 IMAC models, Mac Pro (2023).
Although these vulnerabilities are disturbing, The researchers claim that there has been no evidence that they have been exploited so far. For its part, Apple has been working to resolve these security failures since its first opinion. The company has published a declaration in which it stipulates that it does not think that this problem implies an immediate risk for its users.
However, certain measures should be taken as users to avoid this type of risk of updating the iPhone to the latest version of the operating system, which often frequently solve safety errors and of course do the same with other devices.
You can follow Ipadi On Facebook, Whatsapp, Twitter (x) Or consult our Telegram channel to be up to date with the latest technological news.
Table of Contents
