Apple’s lineup has been a hotbed of vulnerabilities lately. Just last week Apple was forced to release an update for the sole purpose of correcting an issue with SSL connection verification, and now the team of security experts at FireEye has found another exploit. According to the report, the team at FireEye was able “to bypass Apple’s app review process effectively and exploit non-jailbroken iOS 7 successfully.”
Although it has already been reported that jailbroken devices could be vulnerable to certain monitoring techniques, FireEye’s research indicates that the same vulnerability exists within non-jailbroken phones and tablets as well. If you end up installing an app that takes advantage of the exploit, the app could potentially record every screen tap and every button press you perform while running in the background.
The vulnerability appears to exist across several versions of iOS, including the most recent 7.0.6 update, so until Apple releases a fix, the only way to ensure your device isn’t being monitored is to close background apps as soon as you’re done with them.