According to a report by The Telegraph, a major bug has been fixed by Apple in the latest iOS 9.3.3 update, that allows hackers to steal passwords and other sensitive data stored on the iPhone, by simply sending them a text message with a specially-modified image file. When the phone’s software tries to process the image, it executes malicious code within apps without the user suspecting anything.
Security analysts have pointed out that by making iPhone try to process the image, such as receiving a message or visiting a webpage with the picture, hackers could corrupt the iPhone’s memory and access information such as website and email passwords.
The flaw, which was discovered first by Cisco Talos engineer Tyler Bohan, also affects Mac OS X where the problem is even worse since the iPhone’s permissions that allow one app to interact with another are more strict than on the Mac.
In order to protect yourself, here’s what you need to do:
On the iPhone:
Go to Settings -> General -> Software Update and select “Download and Install” to upgrade to iOS 9.3.3. The upgrade is available for iPhone 4s and later, iPod touch fifth generation and iPad 2 and later.
On the Mac:
Click the Apple icon and select the App Store. In the “Updates” tab you can then update to the latest software.