Apple has revealed that they have found a bug in iOS 13 and iPadOS that could give full access to third-party keyboards. They have also revealed that they are working on a fix for the bug.
The new iPadOS and iOS 13.1 software were both released yesterday, and the fix is expected to be released quickly. You can see what they have to say about it below.
Third-party keyboard extensions in iOS can be designed to run entirely standalone, without access to external services, or they can request “full access” to provide additional features through network access. Apple has discovered a bug in iOS 13 and iPadOS that can result in keyboard extensions being granted full access even if you haven’t approved this access.
This issue does not impact Apple’s built-in keyboards. It also doesn’t impact third-party keyboards that don’t make use of full access. The issue will be fixed soon in an upcoming software update.
Understanding the Bug and Its Implications
This bug is particularly concerning because it bypasses user consent, a fundamental aspect of privacy and security on iOS devices. When a third-party keyboard is granted full access, it can potentially transmit keystrokes and other sensitive data to external servers. This could include passwords, credit card information, and personal messages, posing a significant security risk.
Apple’s built-in keyboards are not affected by this issue, which means that users who rely solely on Apple’s default keyboard are safe. However, many users prefer third-party keyboards for their additional features, such as swipe typing, custom themes, and advanced predictive text. Popular third-party keyboards like Gboard and SwiftKey often request full access to provide these enhanced functionalities.
Steps to Protect Your Data
While Apple is working on a fix, users can take steps to protect their data. First, you can check which third-party keyboards you have installed by going to Settings > General > Keyboard > Keyboards. Here, you can see a list of all installed keyboards and manage their permissions.
If you find any third-party keyboards that you do not recognize or no longer use, it is advisable to delete them. For the keyboards you wish to keep, you can disable full access by tapping on the keyboard name and toggling off the “Allow Full Access” option. This will limit the keyboard’s functionality but will enhance your security until the bug is fixed.
Additionally, staying informed about updates is crucial. Apple has a strong track record of addressing security vulnerabilities promptly. Keeping your device updated ensures that you receive the latest security patches and improvements.
You can find out more information about the bug over at Apple at the link below.
Source
Latest Geeky Gadgets Deals
Disclosure: Some of our articles include affiliate links. If you buy something through one of these links, Geeky Gadgets may earn an affiliate commission. Learn about our Disclosure Policy.