OldNFO mentioned this earlier, but this bug in iOS is really bad juju:
Apple warned that the flaw could let miscreants hijack devices with a booby-trapped image – and for some iDevice users, it sounds like the damage has already been done.
"Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals," Cupertino said.
Apple went on to explain that "processing a malicious image file may result in memory corruption," but didn't say what that could lead to.
This is pretty much the trifecta of badness:
- The attack is delivered by a file that looks harmless (an image), so you start out with your guard being down. Hey, just me gathering memes, amirite?
- Active exploit in the wild means that the Bad Guys know how to use this, and in fact are.
- Apple isn't saying what else this exploit can do, which is a sign that this is security badness of Biblical proportions. Maybe I'm wrong here, but this smells of "there's more to the Rest Of The Story".
So when your iPhone/iPad/iWatch go to update, let them. If they haven't updated, go do this manually right now. You can do this my going to the Settings app - going to Settings -> Update will tell you if you are up to date, and will allow you to update if you are not.
1 comment:
Thanks for the head’s up. Fortunately all three of my Apple devices were up to date.
juvat
Post a Comment