Jump to content

Welcome to CyberPhoenix Community

Come as guests, stay as family.

Attention Guests: Please register to view all sections

If you already have an account , please click here to Sign In.

If you have any login related issues you can contact our Support Team at : support@cyberphoenix.org



iPhone Owners Beware, Your Smartphones Can Be Hacked....

  • This topic is locked This topic is locked
No replies to this topic

#1 uk666


    Advanced Member

  • Members
  • 1,520 posts
  • LocationHole of Horcum

Posted 31 March 2017 - 12:01 PM

BEWARE iPhone Owners! Your Smartphones Can Be Hacked By Just Connecting To Any Wi-Fi




This Hack Bypasses iOS Security With Just A Wi-Fi Connection; Update Your iPhone Now


Do you own an iPhone? If yes, beware, as it is possible for hackers to gain access to an iPhone through a Wi-Fi connection, warns a security expert.

According to Marco Grassi, the Senior Security Researcher of Keen Lab of Tencent, the hack is known as “remotely compromising iOS via Wi-Fi and escaping the Sandbox” that demonstrates how an iOS device can be remotely exploited by just joining a Wi-Fi network and using it to bypass the iOS Sandbox.
“The victim will only have to join the Wi-Fi network, and then the device will be compromised without any user interaction, bypassing all iOS mitigations and sandboxes,” reads a blurb of Grassi’s presentation for the Black Hat Asia hacking conference.
Although Grassi has refused to provide any details on how the idea of hack originated or its working, he is expected to reveal the information on his hacking idea at a 50-minute briefing at the Roselle Junior Ballroom in Marina Bay, Singapore on Thursday.
The sandbox is designed with the aim to prevent malicious activity on the device by stopping apps from accessing or making any changes to the files.
“We will disclose a chain of several vulnerabilities, leading to arbitrary code execution outside of the iOS sandbox and show that the device can be compromised in different ways in the post-exploitation phase,” the blurb added.
Apparently, Apple had already fixed the bugs for its iPhone users with the release of iOS 10.2 update in December, reports Forbes. The issue has been made public only in February though. Those users who have not upgraded their OS to the latest iOS update are requested to do so at the earliest to fix the bugs.
The issue existed in the WebSheet component of iOS that is used when iPhone owners connect to public Wi-Fi networks that require them to go through a login portal, wrote Apple in its explainer notes. Apple was reportedly not doing enough proof checks to stop malicious code from running when that WebSheet was loaded.
“A sandbox escape issue was addressed through additional restrictions,” Apple added, acknowledging Grassi and Trend Micro’s Zero Day Initiative, which rewards researchers for discovering bugs before making it known to tech companies.

To succeed in life, you need three things: a wishbone, a backbone and a funny bone.

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

Click to return to top of page in style!