"Luckily for us, SQLite databases are not signed", the report quoted the Check Point researchers as saying. And iOS is a closed ecosystem with no room for unknown apps.
While the researchers found it fairly easy to install a malicious replacement database on iOS, the technique requires access to an unlocked device.
On a similar note, before the FaceTime error emerged earlier, a 14-year-old high schooler from Arizona tried to alert Apple of the problem.
This year alone has seen Apple exposed by a variety of flaws and vulnerabilities that could impact their users. "However, SQLite usage is so versatile that we can actually still trigger it in many scenarios". It would be interesting to see whether Apple will fix the bug or leave it as it is. The firm will reportedly declare those security actions in Las Vegas at the Black Hat security conference later this week in a bid to make its flawed bug bounty program stronger. "Sure this is a win for Apple, but ultimately this a huge win for Apple's end users". He said that Apple takes privacy and hacking very seriously. All they needed was some tape, a pair of spectacles, and an unconscious or sleeping iPhone user.
Project Zero, a section of Google's research team, found six vulnerabilities in iPhones a year ago. One of the bugs allowed hackers to gain access to your iPhone or iPad by sending you a text message. By offering a cash prize for those platforms as well as iPhone, the company is setting itself up to potentially be able to work better with the hackers and security researchers that typically search for and find exploits. Principal security researcher at Jamf - who's found more than a few issues within the macOS - has said that "if you're a large, well-resourced company such as Apple, who claims to place a premium on security, having a bug-bounty program is a no brainer". It's the biggest bug bounty program by Apple.
Cybersecurity firms such as the NSO Group demand over a million dollars from government agencies and private clients for remotely breaking into an iPhone. Apple's new bounties are now in the same range as some published prices from contractors.