OldNFO mentioned this earlier, but this bug in iOS is really bad juju:
Apple warned that the flaw could let miscreants hijack devices with a booby-trapped image – and for some iDevice users, it sounds like the damage has already been done.
"Apple is aware of a report that this issue may have been exploited in an extremely sophisticated attack against specific targeted individuals," Cupertino said.
Apple went on to explain that "processing a malicious image file may result in memory corruption," but didn't say what that could lead to.
This is pretty much the trifecta of badness:
- The attack is delivered by a file that looks harmless (an image), so you start out with your guard being down. Hey, just me gathering memes, amirite?
- Active exploit in the wild means that the Bad Guys know how to use this, and in fact are.
- Apple isn't saying what else this exploit can do, which is a sign that this is security badness of Biblical proportions. Maybe I'm wrong here, but this smells of "there's more to the Rest Of The Story".
So when your iPhone/iPad/iWatch go to update, let them. If they haven't updated, go do this manually right now. You can do this my going to the Settings app - going to Settings -> Update will tell you if you are up to date, and will allow you to update if you are not.
5 comments:
Thanks for the head’s up. Fortunately all three of my Apple devices were up to date.
juvat
Thanks for boosting the signal!
Those of us who do not use Apple garbage do not need to worry about this.
They are every bit as foul as Microsoft!
Thank you for the explanation and I faithfully update because the bad guys never let up.
Ye olde router jockeys - full disclosure I have configured/deployed/managed/troubleshooted thousands of Cisco routers have fond memories of Apple's coup of Cisco's Networking Software IOS and certainly recall the disdain of Apple's coup regarding that IOS TLA (Three Letter Acronym) we held
Post a Comment