| Title: New Version of 'January 1, 1970 Bug' Can Brick Pre-iOS 9.3.1 Devices Over Compromised Wi-Fi Networks Post by: HCK on April 17, 2016, 04:05:07 pm New Version of 'January 1, 1970 Bug' Can Brick Pre-iOS 9.3.1 Devices Over Compromised Wi-Fi Networks Security researchers Patrick Kelley and Matt Harrigan have uncovered a new way to exploit the infamous January 1, 1970 bug (http://www.macrumors.com/2016/02/15/apple-to-fix-january-1-1970-date-bug-ios/) that was found to be the cause of bricked iPhones in February. Despite Apple's patch (http://www.macrumors.com/2016/03/21/apple-releases-ios-9-3/) of the original issue in iOS 9.3, Kelley and Harrigan discovered the way in which an iPhone constantly looks for trusted Wi-Fi networks could lend itself to the malicious bricking of a Wi-Fi enabled Apple device, without the user even knowing it was happening. <img src="(http://cdn.macrumors.com/article-new/2015/09/iPhone-6s-main-800x337.jpg)" alt="iPhone-6s-main" width="800" height="337" class="aligncenter size-large wp-image-463379" /> In a hypothetical example described by Krebs on Security (http://krebsonsecurity.com/2016/04/new-threat-can-auto-brick-apple-devices/), if a user confirms that a network called "attwifi" is a trusted connection, any subsequent network they come into contact with boasting the same name will connect with their iPhone. That way, when users revisit the same location frequently, they never have to fiddle with going through the Wi-Fi set-up process again. But the feature could be used to silently weaponize the 1970 bug, connecting users to similarly-named networks they've never encountered and altering the date and time stamps of their iOS devices. In their research, Kelley and Harrigan used this feature of iPhones and iPads to build a nefarious Wi-Fi network, harnessing the requirement of iOS devices to occasionally connect to a network time protocol (NTP) server to keep date and time in sync. Once a user connected to their thought-to-be trusted network, the iPhone would reconfigure its software to update the date and time information from Kelley and Harrigan's own NTP date, which they specified as January 1, 1970. Harrigan, president and CEO of San Diego-based security firm PacketSled, described the meltdown thusly:the iPad] was about the temperature I like my steak served at.”Harrigan and Kelley coordinated with Apple when they discovered their findings to avoid preempting the company's promise of a fix for the bug, and possibly encouraging its malicious use in the wild. As such, the company has fixed the issue and anyone running iOS 9.3.1 (http://www.macrumors.com/roundup/ios-9/) will be protected from the new iteration of the 1970 bug. Older iOS releases, including the original iOS 9.3 update, are still susceptible, however. With the release of their research, the two security experts are understandably encouraging users to update their iPhones and iPads as soon as possible, and have created a video (https://www.youtube.com/watch?v=zivWTwOjEME) to better explain the issue. <div class="linkback">Related Roundup: iOS 9 (http://www.macrumors.com/roundup/ios-9/) </div> Discuss this article (http://forums.macrumors.com/threads/january-1-1970-bug-wi-fi-ntp.1967474/) in our forums <div class="feedflare"> <img src="http://feeds.feedburner.com/~ff/MacRumors-Front?d=yIl2AUoC8zA" border="0"></img> (http://feeds.macrumors.com/~ff/MacRumors-Front?a=L_4WLxL4dDc:TrnOKeryD0E:yIl2AUoC8zA) <img src="http://feeds.feedburner.com/~ff/MacRumors-Front?d=6W8y8wAjSf4" border="0"></img> (http://feeds.macrumors.com/~ff/MacRumors-Front?a=L_4WLxL4dDc:TrnOKeryD0E:6W8y8wAjSf4) <img src="http://feeds.feedburner.com/~ff/MacRumors-Front?d=qj6IDK7rITs" border="0"></img> (http://feeds.macrumors.com/~ff/MacRumors-Front?a=L_4WLxL4dDc:TrnOKeryD0E:qj6IDK7rITs) </div><img src="http://feeds.feedburner.com/~r/MacRumors-Front/~4/L_4WLxL4dDc" height="1" width="1" alt=""/> Source: New Version of 'January 1, 1970 Bug' Can Brick Pre-iOS 9.3.1 Devices Over Compromised Wi-Fi Networks (http://www.macrumors.com/2016/04/13/january-1-1970-bug-wi-fi-ntp/) |