published : 2023-12-10

The New iPhone Security Threat: A Thrilling Journey of Intrigue and Astonishment

Hackers Find a Way to Spy on Your Phone by Skirting Apple's Security Checks

A hacker typing on a keyboard, illustrating the concept of cybercrime. (Taken with Nikon D850)

Hackers are always finding new ways to break into your devices. A troubling new vulnerability in iOS now allows hackers to spy on you through your keyboard.

Certo Software released a report revealing how cybercriminals are avoiding Apple's stringent security measures to steal your information.

Essentially what hackers are doing is installing a third-party keyboard that features a keylogger into your iPhone.

They will disguise that keylogger in a small app and use Apple's TestFlight tool for app developers to bypass Apple's security checks. Hackers are hoping you download those apps and turn over your own information.

Developers need a place to test their apps, and TestFlight provides a space for that. It lets developers upload unfinished versions of apps and send out links to testers.

Certo notes that hackers use a fairly straightforward practice. They will install a small app containing a custom keyboard. That keyboard features a keylogger, which records everything you type and transmits it to them.

Once the app is installed on your phone, they will install the custom keyboard on your iPhone through your settings app and give the keyboard full access.

To make sure you're not using a compromised keyboard, you should check your keyboard settings in iOS.

Steps to check your keyboard settings in iOS:

A close-up shot of an iPhone screen with a suspicious app icon, highlighting the potential risks of downloading apps from unknown sources. (Taken with Canon EOS 5D Mark IV)

- Go to Settings on your iPhone.

- Tap on General.

- Scroll down and tap on Keyboard.

- Select Keyboards.

Here's how you can protect yourself from keyboard spying attacks:

- Avoid downloading apps from unknown or untrusted sources. Only download apps from the official App Store or from reputable developers.

- Be careful when using TestFlight to test apps. Read the app description and reviews carefully before installing. Do not grant full access to any custom keyboards that you do not recognize or trust.

- Check your keyboard settings regularly and delete any suspicious or unwanted keyboards.

- Update your iOS to the latest version and install any security patches that Apple releases.

A person holding their iPhone while checking their keyboard settings in iOS, emphasizing the importance of protecting oneself from keyboard spying attacks. (Taken with Sony Alpha A7 III)

- Have good antivirus software on all your devices.

If you are a victim of a keyboard spying attack, here's what you should do:

1. Change your passwords for all your important accounts on another device.

2. Monitor your accounts and transactions for suspicious activity.

3. Contact your bank and credit card companies to report the situation.

4. Alert your contacts and warn them not to open or respond to any suspicious messages.

5. Restore your device to factory settings.

6. Consider using identity theft protection services.

There are hundreds, if not thousands, of ways hackers can steal your information. Be careful about where you download your apps and keep an eye out for malicious software.