News Articles

Sunday, February 23, 2014

Latest Apple iOS update fixes SSL security risk

Apple has updated iOS6 and iOS7 to fix an issue with browsing web sites protected by SSL.

Without this update, iPhone and iPad users who were visiting a ‘secure’ website were at risk of having their communication intercepted if they were using a public WiFi connection. The device wasn’t properly authenticating a site’s security certificate, which resulted in it being vulnerable to this type of ‘man in the middle’ attack.

Apple’s security update describes the cause as “Secure Transport failed to validate the authenticity of the connection” and the potential impact as “an attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS”.

[More details: CrowdStrike.com; ImperialViolet.org]

Print
Author: The Fonecast
0 Comments
Rate this article:
No rating

Leave a comment

Name:
Email:
Comment:
Add comment

Name:
Email:
Subject:
Message:
x

Follow thefonecast.com

Twitter @TheFonecast RSS podcast feed
Find us on Facebook Subscribe free via iTunes

Archive Calendar

«March 2019»
MonTueWedThuFriSatSun
25262728123
45678910
11121314151617
18192021222324
25262728293031
1234567

Archive

Terms Of Use | Privacy Statement