If you are an avid iPhone or Macbook fan and follow it's news updates, then the internet must have warned you about it's security vulnerabilities, leaving you to wonder 'Can my iPhone camera be hacked?'. A recent revelation has rolled out that just by simply visiting a website, any genuine legitimate site, your device may become vulnerable to an audio and video hack. To put it simply, there’s a possibility your iPhone MacBook Webcam and Microphone can be hacked.
This important security threat was reported by Ryan Pickren, an ethical hacker, who demonstrated a set of total 7 vulnerabilities to Apple. This helped them jump into quick and much needed action, and in return they rewarded Pickren with $75,000.
Jul 08, 2020 Reset your Mac's system controller (Mac only). If your webcam is not working on your Mac, you may want to try to reset the system controller. Use the following steps to reset your Mac's system controller: Shut down your Mac. Press and hold the left Shift + Control + Option buttons for 7 seconds. If you don't want to tape over your Mac's FaceTime camera, free and paid software can alert you when the camera and microphone are activated. You’re being watched through your hacked.
The vulnerability was found in Apple’s in-built browser Safari, which most Macbook and specially iPhone users rely on. Pickren explains that if a real attacker wants to hack your webcam or iPhone camera, then all they need to do is pose as an authentic website, that the world knows and trusts, and then abuse Safari’s per site permissions.
Let’s dive in for a closer look on how this would work?
Safari Webcam Exploit - How did the Hack work?
How to know if your iPhone cam is hacked? Well, the starting point is to be aware of how hackers will approach it? Let's take a deeper look:
Apple Camera security is quite tight in terms of permissions within the available apps. Before using any new application, it explicitly asks for access.
But the exception to this rule is Apple’s own apps and the ones that have already been granted permission. This is where things went downhill.
So let’s say you’re using the web version of any video conferencing tool, say Zoom or Skype.
- You would naturally allow access in the browser for this domain upon first use.
- Another link that completed this chain of hacks is Safari’s lazy validation for URL scheme.
- This means that if an attacker posed as let’s say blob://skype.com, then Safari will grant it the same browser permissions as https://skype.com
This is known as hostname parsing, where it is possible to trick the browser with url structures such as ‘file:’, ‘javascript:’, ‘data:’.
'Safari thinks we are on skype.com, and I can load some evil JavaScript. Camera, Microphone, and Screen Sharing are all compromised when you open my local HTML file' Pickren said.
To string it all together, this vulnerability was completely Safari’s responsibility for carelessly ignoring the many possibilities of domain structures.
iOS Camera Hacked – What Else Could be Exploited?
Ryan Pickren set out to hack iOS and macOS Webcam for research purposes, and he was able to access a lot more than what he planned for. He answered the long-debated questions like, 'Can my apple webcam be hacked?', 'Can apple phone camera be hacked?'. He discovered, that upon this particular hack, your apple device could be accessed for:
- Webcam / Camera (Front and Rear)
- Microphone
- Saved Passwords
- Location
- Screen Sharing
- Auto-downloads
and more…
Safari Zero-Day Vulnerabilities
To summarize it all, this effective research uncovered 7 zero day vulnerabilities. Let’s take a look at them below:
- CVE-2020-3852: A URL scheme may be incorrectly ignored when determining multimedia permission for a website
- CVE-2020-3864: A DOM object context may not have had a unique security origin
- CVE-2020-3865: A top-level DOM object context may have incorrectly been considered secure
- CVE-2020-3885: A file URL may be incorrectly processed
- CVE-2020-3887: A download's origin may be incorrectly associated
- CVE-2020-9784: A malicious iframe may use another website's download settings
- CVE-2020-9787: A URL scheme containing dash (-) and period (.) adjacent to each other is incorrectly ignored when determining multimedia permission for a website
How Can You Avoid Being Hacked?
We’ll have to write a 1000 page book for this, and even then someone will find a way. But let’s begin with this particular issue for now.
For starters, Apple has rolled out the fixes to this in version 13.0.5 updates (released on January 28, 2020) and Safari 13.1 (released on March 24, 2020). So if you’re reading this, make sure your devices are updated to the latest versions.
Some other precautionary steps you must take to stay safe from such internet hacks are:
- Keep your browser settings up to date. Keep checking all the websites you’ve granted permissions to, and change if need be.
You can check this at Safari > Preferences > Websites - Cross check the URL structure, look for the verified https scheme. Do this especially if you click on an ad.
To read the full white paper from Ryan Pickren, in its full technical glory, click here.
Follow us on Telegram and Twitter for all such latest cybersecurity news and updates.
Smart hackers don’t get caught. They break into your device, steal everything they can, and finish without a trace. Sometimes they leave a trail of destruction in their wake – malware, weird ads, confused relatives, and even a drained bank account or stolen identity.
It’s pretty easy for hackers to do their job. Most people are ambivalent, but you don’t have to be. Click here for 5 security mistakes you’re probably making right now.
Computers, phones, routers, and down to the innocent webcam are vulnerable to cyber-criminals. So what if they’ve already broken in, yet you don’t even know they’re there? Here are clear-cut signs that you've been hacked.
1. Your gadget suddenly slows down
One of the side-effects of malicious software is a slow gadget. Software gets sluggish, or constantly freezes, or even crashes. If you start noticing some of these symptoms, your gadget may very well be infected with viruses, trojans or worms.
Malicious software usually runs in the background, secretly eating up your gadget's resources while it's active.
Here are tools you can use to pinpoint those nasty applications. If an application that you don't recognize is hogging your computer resources, it's likely a virus.
PC: Use Task Manager
There are a few ways to see what processes your computer is running. The easiest is to bring up Windows' built-in Task Manager. Just use the keyboard shortcut CTRL + SHIFT + ESC and go to the Processes tab.
Put simply, the Task Manager lists all of your computer’s current tasks and how much processing power they’re using, measured in Central Processing Units (CPUs). Open up Task Manager and check the CPU and memory columns for each process.
You might find one process is using 100% — or close to it — of your CPU. Open up the program associated with the process and see what it's doing. Restart the task and monitor it, but this program might be the culprit.
Click here to learn powerful Windows Task Manager secrets for diagnosing and repairing slow computers.
Mac: Use Activity Monitor
The Mac equivalent to Task Manager is its built-in Activity Monitor. The quickest way to access the Activity Monitor is by using Spotlight Search.
Click the magnifying glass on the right side of the menu bar at the top of your screen, or press Command + Spacebar to open a Spotlight window and start typing the first few letters to auto-complete 'Activity Monitor.' Just press Enter to access the tool.
Similar to Window's Task Manager, Mac's Activity Monitor displays a list of all your open processes with tabs for CPU, Threads, Idle Wake Ups and Network usage.
Learn these three troubleshooting Mac shortcuts the pros use.
If this happens when you are on an iPhone, try a soft reset by holding the power and the home button until it reboots with the Apple logo. This step can clear out frozen apps that can be hogging your memory.
2. You’re using way more data than usual
Every Internet provider has tools that can keep track of your monthly bandwidth consumption. Look at Data Usage Meter or Data Monitor, depending on your provider. Compare the amount of data used from the prior months, and if you notice sudden spikes in your data activity even though you haven't changed your patterns, then chances are you are infected.
For example, adware infected gadgets usually perform unsolicited clicks in the background to generate profit for cybercriminals. These stealthy tactics use up bandwidth and the unauthorized data they consume should be fairly easy to spot.
Do you want to save on your data consumption? Here are 5 steps to cut your data usage in half.
More Komando: How to find everything Microsoft knows about you
3. Videos suddenly buffer and web pages take forever to load
When a streaming video suddenly freezes, and your device appears to be “thinking,” this is called buffering. This annoyance often happens, especially if you play a lot of videos or your Wi-Fi connection is weak. If it’s happening a lot, or videos fail to play at all, you’re wise to suspect neighbors are piggy-backing on your connection. Click here for steps on how to check for Wi-Fi thieves.
Then again, malware can also slow down your Internet traffic by DNS hijacking. In short, hackers can redirect your Internet traffic to unsafe servers instead of the secure servers. This will not only slow down your browsing experience, it's also a serious security risk. For example, if your router's DNS settings have been hijacked, each time you visit your online bank's website, you'll be redirected to a phishing website instead.
To check your router's DNS settings, you can use an online tool like F-Secure Router. For more security, consider changing your DNS server to one with advanced hijacking protection like CloudFlare or Quad9.
Do you want to make your router hack-proof? Click here for more tips.
More: 6 ways to speed up slow Wi-Fi
4. Programs and apps start crashing
Now, here is a clear sign that your system has been infected. If your antivirus software and task manager are either crashing or disabled, a nasty virus has likely taken hold of your critical system files.
You may not be able to click on once-reliable apps. In the worst case scenario, ransomware may prevent you from opening favorite files.
How To Know If Your Macbook Webcam Is Hacked
You can try and fix the problem by booting your gadget in Safe Mode. With Safe Mode, your computer will be running with just the bare essentials. This way, you can safely delete and uninstall any programs and files that you can't during normal operation.
Windows:
On Windows, search for System Configuration then open it >> select Boot tab then tick off Safe Boot >>check Minimal (this is enough for most cases) >> click on OK to confirm >> Restart your computer.
Click here for detailed steps on how to boot into Windows Safe Mode.
How To Know If Webcam Is Hacked Mac
macOS:
How To Know If Your Webcam Is Hacked Mac Computer
On a Mac, press and hold down the Shift key while restarting your computer. Keep holding the key through the Apple logo and release when you see the login screen.
Android:
Android also has its own version of Safe Mode but there are different ways to activate it, depending on your phone model. Click here to learn how.
iOS:
Stock iOS doesn't have a Safe Mode but you can try a soft reset to fix most issues. To do this, press and hold both your iPhone's Home button and the Sleep button at the same time, wait for it to restart then let go of the buttons when the Apple logo is displayed.
The iPhone X doesn't have a Home button so the process is a bit different. Press and quickly release the volume up button, press and quickly release the volume down button then press and hold the side button and release when the Apple logo appears.
5. You start seeing pop-up ads
Malware can also add bookmarks that you don't want, website shortcuts to your home screen that you didn't create, and spammy messages that entice you to click through. Apart from slowing down your gadget and eating away at your data, these intrusive notifications can also install more malware on your system.
Criminals can also use DNS hijacking to modify the ads that you see while browsing. Instead of the regular ads that you should be getting, they can be replaced with inappropriate or malicious ones.
On Windows, clean out adware with SpyBot Search & Destroy. On a Mac, use Malwarebytes for Mac.
6. Your gadget suddenly restarts
Automatic restarts are part of normal computer life. Software updates and new application installs can prompt you to reboot your computer. Your system will warn you when these happen, and you can delay or postpone them.
Yet sudden restarts are a different story. With Windows 10, there's a free malware detection and extraction program called Microsoft Windows Malicious Software Removal Tool.
How To Know If Your Webcam Is Hacked Mac Os
I recommend a Full Scan with this tool to verify that your computer is updated with the latest malware definitions.
7. Unexplained online activity
Hackers covet your usernames and passwords. These details, coupled with social engineering tricks, can gain access to your banking accounts, your social media profiles, and your online services.
Keep an eye on your email's 'sent' folder and on your social network posts. If you notice emails and posts that you don't remember sending or posting, it's likely that you have been hacked.
Constantly check your accounts for unauthorized activity including movies on your Netflix profile that you don't remember streaming, mystery purchases that you haven't made, songs on your Spotify list that you didn't listen to, credit card charges that came from nowhere.
What other tech tips will help you?
Call my national radio show and click here to find it on your local radio station. You can listen to the Kim Komando Show on your phone, tablet or computer. From buying advice to digital life issues, click here for my free podcasts.