Technology News
English Edition
  • Home
  • Apps
  • Apps News
  • Apple's s App Had a Security Flaw That Exposed s to Phishing Attacks for Three Months

Apple's s App Had a Security Flaw That Exposed s to Phishing Attacks for Three Months 2r2h2z

Apple's revised release notes for the iOS 18.2 update reveal that it patched two issues related to its s app. 3r2qx

Written by David Delima | Updated: 19 March 2025 15:30 IST
Apple's s App Had a Security Flaw That Exposed s to Phishing Attacks for Three Months

Photo Credit: Pexels/ Antoni Shkraba 66q1d

Apple introduced a standalone s app on iOS 18

Highlights
  • Apple fixed two flaws with its s app on iOS 18.2
  • iOS 18.1 rolled out to s in December 2024
  • Apple has updated its release notes to detail the security fixes
ment

Apple released a dedicated s app last year, as part of the iOS 18 software update. Instead of a menu inside the Settings app, s can access their s and other details via a standalone app. However, the s app had a serious security flaw that exposed s to potential phishing attacks from attackers who were on the same Wi-Fi network. The company recently disclosed that it fixed the security flaw three months after iOS 18 was released.

Apple Fixed s App Vulnerability With iOS 18.2 Update 322te

The iPhone maker recently amended its release notes (via 9to5Mac) for the iOS 18.2 update, which was released in December. The document now includes two entries, both titled 's', that describe fixes for the app. Apple has credited Mysk security researchers Talal Haj Bakry and Tommy Mysk with identifying the security vulnerability.

According to the company's updated document, the first patch for the s app on iOS 18.2 fixed two flaws that allowed a in a privileged network position to leak sensitive information, and alter network traffic. 

The Mysk researchers discovered that Apple's s app wasn't using encrypted connections (HTTPS) when fetching details of specific sites, such as site icons. Similarly, reset pages were loaded over HTTP.

The same flaw would allow an attacker on the same Wi-Fi network to intercept the network request, and direct the device to load a phishing website instead of the legitimate one. If the trusts the webpage, they might enter their credentials on the fraudulent website.

The cybersecurity firm reported the issue to Apple in September, and Apple's revised document reveals that it rolled out fixes for the issue with iOS 18.2 in December. Eligible iPhone and iPad models that are running on iOS 18.2 and iPadOS 18.2 or newer versions should not be vulnerable to the flaw.

Comments

For the latest reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Apple
David Delima
David Delima
As a writer on technology with Gadgets 360, David Delima is interested in open-source technology, cybersecurity, consumer privacy, and loves to read and write about how the Internet works. David can be ed via email at [email protected], on Twitter at @DxDavey, and Mastodon at mstdn.social/@delima. More
iPhone 18 Pro Models to Get Apple's Second-Generation 5G Modem: Report

Related Stories x6q4h

Apple's s App Had a Security Flaw That Exposed s to Phishing Attacks for Three Months
Comment
Facebook Gadgets360 Twitter Share Tweet Snapchat LinkedIn Reddit Comment google-newsGoogle News

ment

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi

ment

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Samsung Galaxy A26 Review
  2. Xiaomi 15S Pro With With In-House XRING 01 SoC, 6,100mAh Battery Launched
  3. Infinix GT 30 Pro 5G India Launch Date, Colours, Key Features Confirmed
  4. Noise Buds F1 With Up to 50-Hour Playback Time Debuts at This Price Tag
  5. Honor 400 Series With 200-Megapixel Main Camera Debuts
  6. News Media Alliance Slams Google's AI Mode for Stealing Traffic, Revenue
  7. Vijay Sales Apple Days Sale Brings Discounts on These iPhone, Mac Models
#Latest Stories
  1. Trump Threatens 25 Percent Tariffs on Apple If iPhones Not Made in US
  2. iPhone 16 Pro Max, iPhone 15, MacBook Air (M4) and More Get Discounts During Vijay Sales Apple Days Sale
  3. Anthropic CEO Dario Amodei Says AI Models Hallucinate Less Than Humans: Report
  4. UK Government Updates Crypto Reporting Guidelines, Mandates Collection of Crypto Transaction Data
  5. Acer Swift Neo WIth Intel Core Ultra 5, Up to 32GB RAM Launched in India: Price, Specifications
  6. Elden Ring Film Adaptation in the Works at A24 With Alex Garland Set to Direct
  7. Noise Buds F1 TWS Earbuds With IPX5 Rating, Up to 50-Hour Total Playback Time Launched in India
  8. News Media Alliance Issues Statement on Google’s AI Mode, Calls It ‘Definition of Theft’
  9. Honor Pad 10 With Snapdragon 7 Gen 3 SoC, 10,100mAh Battery Launched: Price, Specifications
  10. Lava Bold N1, Lava Bold N1 Pro India Launch Teased; Pricing, Specifications Revealed
Gadgets 360 is available in
Follow Us
Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.
Trending Products »
Latest Tech News »