Can my iPad be hacked? How do I check?
Hacked?
iPad Air 3, 15
Question marked as
Top-ranking reply
”Hacked” is an often misunderstood and emotive term. You perhaps need to break this down into specific threats that can be objectively discussed. The following is not intended to be an exhaustive list of threats or mitigations.
Due to the system architecture of iOS/iPadOS, unless jailbroken, your iPad is not susceptible to traditional malware infection per-se. However, as with all computer systems, there are still vulnerabilities and exploits to which you remain vulnerable.
Be wary of the frequently repeated myth that Apple devices are immune to malware; those that perpetuate this untruth do not fully comprehend the broader threat landscape. Consider that if the myth (and over-generalisation) were true, Apple (in common with all other Developers and Security Researchers) would not expend considerable resources in developing and issuing regular security updates and patches for their products.
While your iPad is unlikely to be directly infected by malware, it is still possible to easily download an “infected” file to the iPad - which if transferred elsewhere still has the capacity to infect other computer systems with malware. The system architecture inhibits use of traditional Antivirus products - as a consequence, this type of protection is not available for iOS/iPadOS.
Whilst acknowledging that there are no bona-fide anti-virus products for iOS/iPadOS, there are a small number of Apps which do add useful mitigation of other common threats and exploits. Browser and network-based attacks can largely be mitigated by installing a good Content and Ad-blocking product. One of the very best and most respected within the Apple App Store - designed for iPad, iPhone and Mac - is 1Blocker for Safari.
https://apps.apple.com/gb/app/1blocker-for-safari/id1365531024
1Blocker is highly configurable - and crucially does not rely upon an external proxy-service of dubious provenance. All processing takes place on your device - and contrary to expectations, Safari will run faster and more efficiently. Potentially malicious material and undesirable embedded content is blocked from download. 1Blocker has also recently introduced its new “Firewall” functions - that are explicitly designed to block undesirable “trackers”. Being implemented at the network-layer, this additional protection works across all Apps.
A further measure to improve protection is to use a security focussed Recursive DNS Service in preference to using automatic DNS settings. This can either be configured per-device in Settings, or can be set-up on your home Router. I recommend using one of the following services - for which IPv4 and IPv6 server addresses are listed:
Quad9 (recommended)
9.9.9.9
149.112.112.112
2620:fe::fe
2620:fe::9
OpenDNS
208.67.222.222
208.67.220.220
2620:0:ccc::2
2620:0:ccd::2
Cloudflare+APNIC
1.1.1.1
1.0.0.1
2606:4700:4700::1111
2606:4700:4700::1001
Use of the above DNS services will help to shield you from “known bad” websites and URLs - and when used alongside 1Blocker, or other Content Blocker provides defense in depth.
There are advanced techniques to further “harden” iOS/iPadOS - such as using DoH, DoT or DNDSEC - but these are perhaps beyond the immediate skills of novice users.
In summary…
- Yes, in common with all other computing systems, iOS/iPadOS does have vulnerabilities that can be exploited until such time as the vulnerability is patched with a system security update.
- There are useful mitigations that can usefully reduce (but not eliminate) risk.
- In addition to using available technical mitigations, Users should remain wary of commonly exploited attack vectors.