iPhone Contacts Open To Hacking
Researchers have found contacts saved on iPhones are vulnerable to an SQLite hack attack which could infect the devices with malware.
SQLite is the most widespread database engine in the world and is available in every OS, desktop and mobile phone. Windows 10, MacOS, iOS, Chrome, Safari, Firefox and Android are all popular users.
Security company Check Point has discovered a technique being used to manipulate Apple’s iOS Contacts app, which triggers the device to run malicious codes.
The vulnerability has been identified in the industry-standard SQLite database.
Check Point said it enabled hackers to replace part of Apple’s Contacts app.
The researchers said all executable files must be signed as part of Apple’s Secure Boot – but SQLite databases are not signed.