Variation on 1970 date bug can be used to remotely brick pre-iOS 9.3 devices via Wi-Fi hotspots [Updated]

HACKINTOSH.ORG | Macintosh discussion forums > Macintosh News > iPhone/iPod/iPad News (Moderator: HCK) > Variation on 1970 date bug can be used to remotely brick pre-iOS 9.3 devices via Wi-Fi hotspots [Updated]

Pages: [1] Go Down

« previous next »

Author

Topic: Variation on 1970 date bug can be used to remotely brick pre-iOS 9.3 devices via Wi-Fi hotspots [Updated] (Read 386 times)

HCK

Global Moderator
Hero Member

Posts: 79425

Variation on 1970 date bug can be used to remotely brick pre-iOS 9.3 devices via Wi-Fi hotspots [Updated]

« on: April 14, 2016, 04:05:17 pm »

Variation on 1970 date bug can be used to remotely brick pre-iOS 9.3 devices via Wi-Fi hotspots [Updated]

<div class="feat-image">

</div>
<p>Update: Sources close to Apple tell us that, contrary to the original claim, this issue – like the original one – was resolved in iOS 9.3. We also understand that Apple was able to successfully restore the test devices sent to it by the researchers.</p>
<p>While iOS 9.3 <a href="http://9to5mac.com/2016/02/24/how-to-fix-1970-bug/" target="_blank">fixed a bug[/url] that <a href="http://9to5mac.com/2016/02/11/date-time-bug-bricks-iphone-forever-fix/" target="_blank">bricked iOS devices[/url] when the date was set to January 1, 1970, security researchers have found a variation on the theme that can remotely brick devices as soon as they connect to a Wi-Fi hotspot. The exploit uses a combination of two weaknesses discovered in iOS, reports <a href="http://krebsonsecurity.com/2016/04/new-threat-can-auto-brick-apple-devices/" target="_blank">KrebsonSecurity[/url].</p>
<p>The first is that iOS devices automatically reconnect to known Wi-Fi hotspots, but rely on the SSID to identity them. iPhones and iPads will auto-connect to a malicious Wi-Fi hotspot that spoofs the name of a known one.</p>
<p>Second, iOS devices are programmed to constantly check that their time and date settings are correct by connecting to Network Time Protocol (NTP) servers. All the researchers had to do was create their own Wi-Fi hotspot labelled ‘attwifi’ (as used by Starbucks) and their own NTP server pretending to be time.apple.com to deliver the January 1, 1970 date …</p>
<p> <a href="http://9to5mac.com/2016/04/13/brick-iphone-via-wifi/#more-427146" class="more-link">more…[/url]</p>
Filed under: <a href='http://9to5mac.com/category/ios-devices/'>iOS Devices[/url] Tagged: <a href='http://9to5mac.com/tag/1970-date-bug/'>1970 date bug[/url], <a href='http://9to5mac.com/tag/1970-date-bug-wifi/'>1970 date bug wifi[/url], <a href='http://9to5mac.com/tag/ios-9-3/'>iOS 9.3[/url], <a href='http://9to5mac.com/tag/ios-9-3-1/'>iOS 9.3.1[/url], <a href='http://9to5mac.com/tag/iphone/'>iPhone[/url], <a href='http://9to5mac.com/tag/iphone-vulnerability/'>iPhone vulnerability[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gocomments/9to5mac.wordpress.com/427146/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/comments/9to5mac.wordpress.com/427146/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/godelicious/9to5mac.wordpress.com/427146/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/delicious/9to5mac.wordpress.com/427146/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gofacebook/9to5mac.wordpress.com/427146/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/facebook/9to5mac.wordpress.com/427146/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gotwitter/9to5mac.wordpress.com/427146/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/twitter/9to5mac.wordpress.com/427146/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/gostumble/9to5mac.wordpress.com/427146/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/stumble/9to5mac.wordpress.com/427146/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/godigg/9to5mac.wordpress.com/427146/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/digg/9to5mac.wordpress.com/427146/" />[/url] <a rel="nofollow" href="http://feeds.wordpress.com/1.0/goreddit/9to5mac.wordpress.com/427146/"><img alt="" border="0" src="http://feeds.wordpress.com/1.0/reddit/9to5mac.wordpress.com/427146/" />[/url] <img alt="" border="0" src="

[/img]?host=9to5mac.com&blog=22754319&post=427146&subd=9to5mac&ref=&feed=1" width="1" height="1" /><img alt="" border="0" src="

[/img]?host=9to5mac.com&blog=22754319&post=427146&subd=9to5mac&ref=&feed=1" width="1" height="1" /><div class="feedflare">
<img src="[url]http://feeds.feedburner.com/~ff/9To5Mac-MacAllDay?i=VeCW-Z1bol4:I90WR-Smfak:D7DqB2pKExk" border="0"></img>[/url]
</div><img src="http://feeds.feedburner.com/~r/9To5Mac-MacAllDay/~4/VeCW-Z1bol4" height="1" width="1" alt=""/>

Source: Variation on 1970 date bug can be used to remotely brick pre-iOS 9.3 devices via Wi-Fi hotspots [Updated]


	Logged

Pages: [1] Go Up

« previous next »

Jump to: