Home » Apple » Popup for login authentication in iOS mail allows phishing attacks

Popup for login authentication in iOS mail allows phishing attacks

While you read your email on iPhone or iPad beware of the popups that asks for relogin which has a bug as mail.app injector that allows the attacker to run a HTML code and get your Apple ID and password according to the security researcher Jan Soucek. The bug was identified earlier in January in the iOS version 8.1.1 and reported to Apple and the security researcher waited for the response, but there is no fix for the bug in versions 8.1.2 according to the internet resources.

Soucek has uploaded the code via Github, the code sharing website and also added the proof of concept video on youtube to alert the users about the bug and as of now the request is to not use to login with the pop on using email.