macOS

MacOS Calendar Exploit Let Hackers Steal iCloud Photos

By Paul Terpstra
The macOS calendar app on MacBook, iPhone, and iPad.

A critical macOS vulnerability has been uncovered, allowing hackers to steal iCloud photos using calendar invites. Shockingly, no clicks were required from users. This zero-click exploit, discovered by security researcher Mikko Kenttälä in 2022, gave attackers access to users’ iCloud Photos without any interaction. While Apple has since patched the issue, the discovery has raised serious concerns about the dangers of zero-click attacks.


How the Exploit Worked

Kenttälä found a vulnerability in macOS Calendar that allowed attackers to manipulate files. Specifically, hackers could inject malicious calendar invites containing harmful file attachments. Since the system did not properly sanitize these attachments, it led to a serious security gap. Through a directory traversal attack, attackers could place dangerous files in vulnerable locations on the system​.

The macOS calendar app on MacBook, iPhone, and iPad.

Furthermore, this vulnerability, known as CVE-2022-46723, allowed hackers to write and delete files without authorization. By injecting multiple malicious files, they could escalate the attack and even execute remote code​.

How iCloud Photos Were Stolen

Hackers took full advantage of the exploit when they targeted the Photos app. In fact, they manipulated the configuration of the Photos library to access iCloud Photos. By tricking the app into using an unprotected directory as the primary library, the attackers synced and copied sensitive iCloud photos.


Apple’s Response and Fixes

From October 2022 to September 2023, Apple released patches that addressed these vulnerabilities. Moreover, they tightened file permissions and improved security layers to block directory traversal attacks in Calendar. These updates have effectively closed the vulnerability​.

How to Stay Protected

Zero-click attacks are a growing threat. Therefore, security experts advise keeping software updated at all times. Additionally, limiting app permissions, especially for calendar and photo access, is also a crucial step in staying protected​.

Although Apple has fixed the issue, this incident highlights the need to stay vigilant and protect personal data from increasingly advanced threats.

SOURCES:Medium
Share This Article
Latest Articles
Three iPhones displaying iOS 18 interface.
iOS 18 Launches, Apple Intelligence Coming Soon
2 Min Read
A MacBook screen displaying iPhone mirroring on macOS Sequoia.
macOS Sequoia Launches with iPhone Mirroring & Password App
2 Min Read
A TV screen displaying an Apple TV interface with a movie.
Apple Launches tvOS 18 with New Features for Apple TV
2 Min Read
Close-up of Apple Sports App interface.
Apple Sports App Boosts Live Scores with Live Activities
2 Min Read
Gary Oldman as Jackson Lamb in "Slow Horses," holding an ice cream cone.
“Slow Horses” Wins Emmy, Boosting Apple TV+ Awards Streak
2 Min Read
Hands holding iPhone 16 models.
iPhone 16 Pre-Order Sales Fall Short of Expectations
2 Min Read
Person repairing an iPhone using tools on a workbench.
iOS 18 Repair Assistant to Simplify DIY Repairs
2 Min Read
Side view of four iPhone 16 Pro models in different colors.
Apple Increases Out-of-Warranty Battery Costs for iPhone 16 Pro
2 Min Read
Close-up portrait of Steve Jobs with his glasses.
Steve Jobs Autographs to Headline Rare Auction
2 Min Read
iPadOS 18 features with various new functionalities.
iPadOS 18 Apps Coming to EU Stores on September 16
2 Min Read
iPhone 16 Pro Max front and back view.
iPhone 16 Pro Max Preorders Face Immediate Shipping Delays
2 Min Read
iPhone 16 Pro models in different colours displayed from the back.
iPhone 16 and 16 Pro Preorders Open: Key Details
2 Min Read
Table of Contents