Techly NewsGet the app

Get the latest tech news

Apple chips can be hacked to leak secrets from Gmail, iCloud, and more


Side channel gives unauthenticated remote attackers access they should never have.

Apple-designed chips powering Macs, iPhones, and iPads contain two newly discovered vulnerabilities that leak credit card information, locations, and other sensitive data from the Chrome and Safari browsers as they visit sites such as iCloud Calendar, Google Maps, and Proton Mail. The vulnerabilities, affecting the CPUs in later generations of Apple A- and M-series chip sets, open them to side channel attacks, a class of exploit that infers secrets by measuring manifestations such as timing, sound, and power consumption. We demonstrate the LVP's dangers by orchestrating these attacks on both the Safari and Chrome web browsers in the form of arbitrary memory read primitives, recovering location history, calendar events, and credit card information.

Get the Android app

Or read this on r/apple

Read more on:

Photo of Apple

Apple

Photo of Gmail

Gmail

Photo of secrets

secrets

Related news:

News photo

Apple to Patch Web Browser Vulnerabilities Affecting Recent Macs, iPads and iPhones

News photo

Apple Promotes Beats Pill With Valentine's Day-Themed Ad

News photo

Apple fixes zero-day flaw affecting all devices

« Show HN: Meelo, self-hosted music server for collectors and music maniacs
DeepSeek’s Rise Sparks Anxiety and Some Hope in AI World »