iOS Wi-Fi exploit enables zero-click remote iPhone access without user knowledge

A newly discovered — and already patched — iOS vulnerability allowed hackers to access and gain control over nearby iPhones using a proprietary Apple wireless mesh networking protocol called AWDL.Discovered by security researcher Ian Beer, a member of Google’s Project Zero team, the AWDL scheme enabled remote access to photos, emails, messages, real-time device monitoring and more.As detailed in an exhaustive technical breakdown posted to the Project Zero blog on Tuesday, Beer uncovered the mechanism behind the exploit in a 2018 iOS beta that accidentally shipped with intact function name symbols tied to the kernelcache. After poking around in Apple’s code, he uncovered AWDL, a cornerstone technology that powers AirDrop, Sidecar and other tentpole connectivity features.Read more…
Go to Source