{"id":932,"date":"2020-10-12T15:04:07","date_gmt":"2020-10-12T19:04:07","guid":{"rendered":"https:\/\/www.pwvconsultants.com\/blog\/?p=932"},"modified":"2020-10-13T18:44:00","modified_gmt":"2020-10-13T22:44:00","slug":"apple-fixing-bugs-found-in-white-hat-hack","status":"publish","type":"post","link":"https:\/\/www.pwvconsultants.com\/blog\/apple-fixing-bugs-found-in-white-hat-hack\/","title":{"rendered":"Apple Fixing Bugs Found in White Hat Hack"},"content":{"rendered":"\n

A white hat hack found 55 bugs on Apple’s network, 11 of them critical. The cost to fix them is not small.<\/h2>\n\n\n\n

Recently, there has been an uptick in cyber-attacks worldwide, which is why we have discussed the importance of white hat testing and how to handle the results of those tests. Many of the recent attacks have been on the healthcare industry. Attackers know the system is strained and the likelihood of receiving a ransom payment is pretty high. Apple should be thankful that attacks have been focused elsewhere, as a recent white hat hack revealed 55 vulnerabilities, 11 of them critical.<\/p>\n\n\n\n

Sam Curry, who specializes in website security, is the researcher who led the team that conducted the white hat hack. \u201cIf the issues were used by an attacker, Apple would\u2019ve faced massive information disclosure and integrity loss,\u201d Curry said in an online chat<\/a> a few hours after posting a 9,200-word write up titled We Hacked Apple for 3 Months: Here\u2019s What We Found<\/em><\/a>. \u201cFor instance, attackers would have access to the internal tools used for managing user information and additionally be able to change the systems around to work as the hackers intend.\u201d <\/p>\n\n\n\n

The 11 critical vulnerabilities allowed Curry to take control of core Apple infrastructure. From there he could steal private emails, iCloud data and other private information. Those 11 instances are as follows:<\/p>\n\n\n\n