Fortune has a Time article by Noah Rayman about some nasty malware:
The US government is warning Apple gadget owners to look out for hackers exploiting a newly revealed vulnerability in the mobile operating system iOS.Rico says you may be tempted to load up some strange software, but don't...
The so-called Masque Attack was disclosed earlier this week by the network security firm FireEye. It allows a hacker to replace an iOS app with malware, according to an alert posted on the website of the Computer Emergency Readiness Team, which operates under the Department of Homeland Security.
“This technique takes advantage of a security weakness that allows an untrusted app— with the same “bundle identifier” as that of a legitimate app— to replace the legitimate app on an affected device, while keeping all of the user’s data”, the warning states. “This vulnerability exists because iOS does not enforce matching certificates for apps with the same bundle identifier.”
The agency warns iOS users not to install apps from sources other than Apple’s official app store or their own organizations, among other precautions.
No comments:
Post a Comment