A new feature found in iPhone OS 3.0 has also created a new security liability, according to a security group member. The exploit is caused by the OS’ automatic opening of Safari when attempting to connect to a network. Remote-exploit.org co-founder Max Moser explains that when the iPhone joins a network, it tries to run a DNS query for apple.com, and open a simple HTML document stored on Apple’s website. If these two things happen without incident, it functions as normal, but in circumstances in which the DNS query is successful but it can’t retrieve the HTML file, it assumes there is a “captive portal”—a hotspot with a login/pay-to-use screen—and automatically opens Safari. When combined with the penetration testing software karmetasploit, this vulnerability could potentially be used to capture iPhone cookies, account information, and possibly more, depending on what other vulnerabilities are found. While this would require a malicious Wi-Fi network to be setup, which might also pose a threat to other devices, the iPhone’s new automatic connect sequence leaves it more vulnerable than most. [via InformationWeek]
Latest News
- M1 iPad Pro twice as fast as the previous generation, benchmarks suggest
- Apple fires Antonio Garcia after backlash from employees
- German security researcher breaks into AirTag
- Adobe Audition now fully supports Apple Silicon natively
- Apple to merge ‘iCloud Documents and Data’ with iCloud Drive in May 2022
- Apple calls for dismissal of $800 million lawsuit filed by Coronavirus Reporter app developers
- Apple TV+ adaptation of Stephen King’s Lisey’s Story trailer released
- Apple files patent detailing technology to help locate an iPhone lost in the car
- Apple’s Developer Academy in Detroit starts accepting applications
- Apple releases support document for confused Apple One subscribers with two Apple IDs