Petronella Blog Archive

Visit our New Blog

Hacking iPhones and iPads with an Email

Blog Post

If you open an email on your iPhone or iPad, you might be allowing hackers to load any HTML code they want.

It was recently reported that iOS devices ignore the meta http-equiv=refresh code in incoming emails.  A savvy hacker can make an email look like it's from a legitimate company, and when you open the email you could, for example, be prompted to log in to your iCloud account, which would then send the information to the hacker.

Apple has been aware of the flaw since January, but has yet to fix it.

There are two things to keep in mind when it comes to your email security.  First, consider if the company contacting you is one to whom you've given your email address.  If it's not, then you shouldn't be receiving email from them.  Next, check the "from" address.  If the company's domain is not in the email address, that should send up a red flag.  Lastly, don't fill out any forms that appear when you open an email, even if it looks legitimate.