|
Title: SSL certificate flaw allows hackers to crash devices running iOS 8 Post by: HCK on April 23, 2015, 09:00:10 am SSL certificate flaw allows hackers to crash devices running iOS 8
<article> <section class="page"> <p> A flaw in iOS 8 would allow attackers to render devices running the mobile OS useless if they’re within range of a fake wireless hotspot, according to researchers from security firm Skycure.</p><p> The vulnerability exploits an issue in how iOS 8 handles SSL certificates. By manipulating the certificates, researchers found they were able to get apps running on iPads, iPhones, and iPods, as well as the OS itself, to crash. In other instances, the researchers placed the devices in a constant reboot cycle.</p><figure class="medium right" itemprop="associatedMedia" itemscope="" itemtype="http://schema.org/ImageObject" itemid="(http://[img]http://images.techhive.com/images/article/2015/04/ios-wifi-100580754-medium.png)[/img]"> <img src="(http://[img]http://images.techhive.com/images/article/2015/04/ios-wifi-100580754-medium.png)[/img]" height="504" width="300" alt="ios wifi"/> <small class="credit" itemprop="copyrightHolder">Apple</small></figure> <p> Yair Amit and Adi Sharabani, Skycure’s CTO and CEO, respectively, discussed the flaw, called “No iOS Zone,” Tuesday during a session at the RSA conference and talked about their findings in a blog post (https://www.skycure.com/blog/ios-shield-allows-dos-attacks-on-ios-devices/) on Wednesday.</p><p class="jumpTag"><a href="/article/2913492/ssl-certificate-flaw-allows-hackers-to-crash-devices-running-ios-8.html#jump">To read this article in full or to leave a comment, please click here[/url]</p></section></article> Source: SSL certificate flaw allows hackers to crash devices running iOS 8 (http://www.macworld.com/article/2913492/ssl-certificate-flaw-allows-hackers-to-crash-devices-running-ios-8.html#tk.rss_all) |