Here's How Jailbreakers Can Protect Themselves Against Email Phishing Attacks
Earlier today, we reported
on a phishing attack brewed from a known e-mail client vulnerability in Apple's Mail application on iOS devices that would try to get you to enter your iCloud password in a very convincing popup message that looks like something native to iOS. The problem has been present since iOS 8.1.2, but Apple's lack of acknowledging the problem led the person behind the discovery to publicize the problem further to try to push Apple into fixing it faster.
It's pretty obvious what's going to happen here. Much like the unicode text messaging bug
that crashed devices, Apple is going to want to fix the problem in a future software update. And jailbreakers don't like software updates, because they're usually anti-productive towards the cause.
That's why the jailbreak community has once again
come to the rescue, fixing a hole that Apple has failed to fix themselves for more than 6 months. iOS development team HASHBANG Productions has launched a new free jailbreak tweak called DeDirect
that prevents any e-mails from allowing the loading of external HTML code that could be used to toggle those malicious password-stealing prompts.
If you're concerned about your security and worry that the Mail application vulnerability could affect you or your security, you can grab this jailbreak tweak for free right now from Cydia's BigBoss repository. We recommend it to keep yourself 100% safe while using Apple's Mail application on your iOS device so that your Mail application will be unable to load external HTML code without your permission.
There are no options to configure and installing it is all you have to do to protect yourself.
iOS 8.0-iOS 8.1.2
iPhone 5 running iOS 8.1.2