Six ways they can still hack your iPhone

From MacBook to iPhone, both tech pros and consumers historically choose Apple products because of their security standards. Apple products still have multiple security vulnerabilities, however, and security isn’t something we can think about just once when we purchase a device. At Rubica we specialize in plugging security holes—and not just for our customers. iPhone cybersecurity needs strategy, too.

Here are six ways you can still get hacked on your iPhone (and what you can do to stay secure):

  1. Downloading apps infected with malware
    • Apple tends to be more rigorous than Google when it comes to monitoring their App Store, but it is still possible to download apps that contain malware.
    • Download thoughtfully. Does it look legit? Are there enough good reviews? Is it free? Be especially cautious with app permissions. Free apps frequently request access to sensitive content like your device camera, microphone, and location data. Ensure you’re only giving apps permission to things they need to function.
  1. Using public wifi on your iPhone
    • This is by far the greatest security risk. No matter how many security controls are in place in iOS, if you connect to a compromised wifi hotspot where attackers frequently carry out man-in-the-middle attacks, you’re in danger.
    • Use a secure VPN like Rubica to encrypt your traffic. That way attackers can’t see data flowing (such as passwords and other sensitive information) between your device and the hotspot.
  1. Using weak iCloud password security
    • Having a weak password leaves your iCloud account vulnerable. If breached, attackers gain access to photos, files in your iCloud Drive, email, browsing history, calendar and messages.
    • Always use strong passwords (and ideally a password manager). Strong passwords and multi-factor authentication will make it very difficult to hack your account and prevent subsequent hacks to gain access to your other accounts and any services or identities joined to them.
  1. Not installing software updates
    • Even though Apple continuously releases security updates to their operating systems, there is still a possibility of zero-day exploits. A zero-day attack happens once a software flaw gets exploited and attackers release malware before a developer has an opportunity to create a patch to fix the vulnerability—hence “zero-day.”
    • As soon as you see an update available from your device, install it. Even if it seems irrelevant.
  1. Clicking on malicious links
    • No matter how many security controls are built into iOS, if you click on a malicious link, hackers can use that to gain access to your device.
    • Use an anti-malware app like Rubica on your iPhone to protect against known phishing links and other constantly-evolving malware.
  1. Giving out your phone number
    • By knowing your telephone number, hackers can spy on your messages and calls, track your location, and even intercept two factor authentication codes sent through text messages.
    • Consider using a Google Voice or other “burner” phone number for things like billing and loyalty programs, restricting your real phone number for only trusted people.

The next time you hear a friend saying they don’t need personal cybersecurity because they have an iPhone, feel free to enlighten them about Apple vulnerabilities that leave them at risk of compromise. Securing your digital perimeter is as fast as tapping the Turn On Protection button in the Rubica app.