SSL bug attacks iOS via WiFi, bricks iPhones, iPads

April 24, 2015

Via: itCurated

APPLE DEVICES have been found to be vulnerable to fly-by WiFi attacks, according to researchers from Skycure who were experimenting with router configuration and discovered that a certain set-up makes iOS devices go bananas.

A specially designed SSL certificate could be used by an attacker to regenerate the bug and force any app that requires SSL to crash.

Spurred on by the discovery, Skycure decided to see whether it was possible to recreate it over a network interface.

It was, and the proof-of-concept demonstrates that the flaw can be turned into a wider denial of service attack. iOS vulnerabilities are far rarer than on Android, but they’re not unheard of.

Read More