• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • April 20th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Security

Any iPhone, iPad Within Wi-Fi Range can be Crashed due to Security Flaw

April 23rd, 2015 Waqas Security 0 comments
Any iPhone, iPad Within Wi-Fi Range can be Crashed due to Security Flaw
Share on FacebookShare on Twitter

Researchers at the RSA conference explained about a newly found vulnerability that allows attackers to crash just about any iOS device.

San Francisco: Researchers from Skycure security firm revealed vulnerability “No iOS Zone” yesterday at the RSA security conference.

This vulnerability allows cybercriminals crash just about any iOS device that comes within a WiFi hotspot range.

They acknowledged the fact that this happens regardless if you have deliberately connected or not.

The vulnerability is caused by an iOS 8 bug, which manipulates SSL certificates that are sent to iOS devices via a network.

These certificates are basically needed in every app but according to research team at RSA, the bug can facilitate crashing of any iOS device.

Moreover, the team revealed that in worst scenario, it can even put the devices into a continuous boot-loop.

Initially, the vulnerability seems harmless since it relies upon bad SSL certificates that are sent to you. If you don’t connect to any random WiFi hotspot, you won’t get into trouble.

Trouble however arises when the SSL certificate flaw gets combined with an older exploit, which researchers have named WiFiGate.

Thus, the team identified that iOS devices have been programmed by carriers in a way that these get automatically connected to specific networks.

For instance, AT&T customers’ iOS device will auto-connect to any network named “attwifi.”
Therefore, there is simply no way to avoid getting connected to random WiFi networks.
Resultantly, Skycure team was able to create a tainted Wi-Fi hotspot that any iOS device in the nearest vicinity could connect to and later crash and become useless. Since the device gets stuck in a constant boot-loop, it becomes very difficult to disable Wi-Fi and evade the attacker’s network.

In the presentation from the Skycure research team, it was pointed out that the vulnerability can render any iOS device useless in a specific location.

Apple is cooperating with the research team to fix this issue. However, full details of their attack haven’t been revealed but it is apparent that theoretically every iOS device is vulnerable now.

  • Tags
  • Apple
  • hackers
  • iOS 8
  • iPad
  • iPhone
  • Privacy
  • RSA Conference
  • security
  • Vulnerability
Facebook Twitter LinkedIn Pinterest
Previous article Voices from hacked Baby monitor tells child to “stay in bed”
Next article Crooks Target Bank Customers with 'Changes to Interest Rate' Phishing Scam
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
WhatsApp Pink is malware spreading through group chats

WhatsApp Pink is malware spreading through group chats

2021 and Emerging Cybersecurity Threats

2021 and Emerging Cybersecurity Threats

Unpatched MS Exchange servers hit by cryptojacking malware

Unpatched MS Exchange servers hit by cryptojacking malware

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Hackers claims to be selling 13tb of Domino’s India data
Hacking News

Hackers claims to be selling 13tb of Domino’s India data

WhatsApp Pink is malware spreading through group chats
Security

WhatsApp Pink is malware spreading through group chats

A hacker claims to be selling sensitive data from OTP generating firm
Hacking News

A hacker claims to be selling sensitive data from OTP generating firm

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us