Qi’an Pangu’s white-hat hacker slipper from Pangu Lab recently cracked an iPhone 13 Pro running iOS 15 in one second to steal the highest authority. The incident took place during the 4th Tianfu Cup International Cyber Security Competition, where the hacker jailbroke the iPhone 13 Pro to gain remote access, indicating there was a loophole or security vulnerability.
The slipper also won the conference’s highest cracking project bonus of 300,000 US dollars as a first prize which is self-explanatory. The white-hat hacker has successfully cracked the iPhone 13 Pro running on iOS 15. Users will only have to click on a URL link to trigger Safari’s remote code execution vulnerability. It’ll basically allow attackers to remotely attack on the device system as well as on the user data.
After bypassing the Safari security mechanism, the hacker also used multiple vulnerabilities in the iOS 15 kernel and A15 to perform a combined attack as a cross-check. It has been reported that the hacker has bypassed multiple security mechanisms on the device and is now in control of the entire iPhone 13 Pro, including photo albums, messages, etc. It’s also worth mentioning that the attacker can even delete the data on the device or execute other commands.
What is most intriguing is that this hacking can be done simply by clicking on a URL link and all other operations will cease to work on the affected iPhone 13 Pro operating on iOS 15. The cracking process takes only a second, however, which makes it quite dangerous. Developers at Apple should take this matter seriously and work on the security protocol more efficiently, especially with iOS 15.