News Articles

Sunday, February 23, 2014

Latest Apple iOS update fixes SSL security risk

Apple has updated iOS6 and iOS7 to fix an issue with browsing web sites protected by SSL.

Without this update, iPhone and iPad users who were visiting a ‘secure’ website were at risk of having their communication intercepted if they were using a public WiFi connection. The device wasn’t properly authenticating a site’s security certificate, which resulted in it being vulnerable to this type of ‘man in the middle’ attack.

Apple’s security update describes the cause as “Secure Transport failed to validate the authenticity of the connection” and the potential impact as “an attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS”.

[More details: CrowdStrike.com; ImperialViolet.org]

Print
Author: The Fonecast
0 Comments
Rate this article:
No rating

Leave a comment

This form collects your name, email, IP address and content so that we can keep track of the comments placed on the website. For more info check our Privacy Policy and Terms Of Use where you will get more info on where, how and why we store your data.
Add comment

Follow thefonecast.com

Twitter @TheFonecast RSS podcast feed
Find us on Facebook Subscribe free via iTunes

Archive Calendar

«December 2024»
MonTueWedThuFriSatSun
2526272829301
2345678
9101112131415
16171819202122
23242526272829
303112345

Archive

Terms Of Use | Privacy Statement