Security researchers have discovered two flaws present in all current iPhones, iPads and Macs, as well as many previous flaws. A vulnerability known as Slap and Flop could allow an attacker to see what is currently in an open web tab.
The defects are introduced on A15 and M2 chips and can also be seen on subsequent chips up to the latest version of each device…
What are slaps and flops?
Slaps (speculative attacks with load address prediction) and flops (fake load output prediction) have been discovered by security researchers at Georgia Tech. They work the same way as Spectre and Meltdown.
All of these vulnerabilities come from the approaches Apple and other chip designers use to speed up processing times. The idea, known as speculative execution, is that the chips will predict the possibility of future commands and attempt to preemptively load the data needed to execute them.
If an attacker can inject rogue data into these processes, it can read memory content that is inaccessible.
What are the vulnerabilities?
In Safari, each tab must be sandboxed. This means that a website opens in one tab will not be able to access data from another website opens in another tab.
If an attacker can access the compromised website with a slap, you can access the data from other open Safari tabs. For example, you can read emails, look at your location on Apple Maps, see bank details, and more.
The flops can do the same thing, but they’re more powerful and I’m working with Chrome and Safari.
Macs do not need malware. It is unlikely that an attack will be performed using a flaw in Apple’s own code and will detect that an attack is in progress.
Which devices are vulnerable?
Apple devices on A15 or later, and Apple devices on M2 or later. Researchers have confirmed that the following devices are vulnerable:
iPhone:
- iPhone 13
- iPhone 14
- iPhone 15
- iPhone 16
- 3rd Generation iPhone SE
iPad:
- iPad Air models from 2021 onwards
- iPad Pro models from 2021 onwards
- iPad Mini Models from 2021 onwards
Mac:
- MacBook Air Models from 2022 onwards
- MacBook Pro models from 2022 onwards
- MAC mini models from 2023 onwards
- Mac Studio models from 2023 onwards
- iMac models from 2023 onwards
- Mac Pro (2023)
What are the real world risks?
Researchers say there is no evidence that either vulnerability is still being exploited in the wild.
Apple has been working on fixing both defects for SLAP in May 2024 and FLOP in September 2024, since the company was first notified.
The company issued a short statement Bleeding Computer:
Based on the analysis, we do not believe that this issue poses any immediate risk to our users.
Currently, there are no precautions that can be taken beyond the exercise of normal care on the websites you visit.
Image: 9to5 mac collage with Apple photos
(tagstotranslate) iphone
