Translation from English

Saturday, February 22, 2014

Apple Security Flaw " As Bad As You Could Imagine"- Slate

Apple Security Flaw Is “As Bad As You Could Imagine”

464345225-apps-are-seen-on-apple-iphone-5s-january-22-2014-in
IPhones, iPads and Mac computers are vulnerable to a so-called man-in-the-middle (MITM) attack
Photo by KAREN BLEIER/AFP/Getty Images
Apple acknowledged a major security flaw in its software for mobile devices on Friday but did so in such a low-key way that most users likely aren’t aware of just how at risk they might be if they fail to update their software. Plus, experts are saying that Mac computers could be even more exposed to attacks than the mobile software. So what is the problem? A Secure Socket Layer (SSL) vulnerability allowing hackers to intercept information that was supposed to encrypted.
24/7 Wall Street explains:
Let’s say the attacker had access to the same network over an unsecured WiFi connection in a coffee shop or restaurant. He could impersonate a protected site such as Facebook or Gmail and alter any data passed between the iPhone and the site.
Johns Hopkins University cryptography professor Matthew Green summarizes it succinctly to Reuters:  "It's as bad as you could imagine, that's all I can say.”
The flaw is certainly embarrassing considering SSL is hardly groundbreaking stuff and has been around for years. Some are speculating that it is this very security hole that allowed the National Security Agency to allegedly access any iOS device, according to documents leaked by Edward Snowden, points out ZDNet. Apple has denied that is the case.

No comments:

Post a Comment

Please leave a comment-- or suggestions, particularly of topics and places you'd like to see covered