iPhone, iPad flaw could allow interception of encrypted communications: Apple

Advertisement
By Reuters | Updated: 22 February 2014 12:22 IST
iPhone, iPad flaw could allow interception of encrypted communications: Apple
A major flaw in Apple Inc software for mobile devices could allow hackers to intercept email and other communications that are meant to be encrypted, the company said in a Friday afternoon announcement.

If attackers have access to a user's network, such as by sharing the same unsecured wireless service offered by a restaurant, they could see or alter exchanges between the user and protected sites such as Gmail and Facebook, experts said.

"It's as bad as you could imagine, that's all I can say," said Johns Hopkins University cryptography professor Matthew Green.

Apple did not say when or how it learned about the flaw in the way iOS handles sessions in what are known as secure sockets layer or transport layer security, nor did it say whether the flaw was being exploited.

But a statement on its support website was blunt: The software "failed to validate the authenticity of the connection."

Advertisement

Apple released software patches and an update for the current version of iOS for iPhone 4 and later, 5th-generation iPod touches, and iPad 2 and later.

Without the fix, a hacker could impersonate a protected site and sit in the middle as email or financial data goes between the user and the real site, Green said.

Advertisement

Apple did not reply to requests for comment. The flaw appears to be in the way that well-understood protocols were implemented, an embarrassing lapse for a company of Apple's stature and technical prowess.

The company was recently stung by leaked intelligence documents claiming that authorities had 100 percent success rate in breaking into iPhones.

Advertisement

Friday's announcement suggests that enterprising hackers could have had great success as well if they knew of the flaw.

© Thomson Reuters 2014

 

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Advertisement

Related Stories

Popular Mobile Brands
  1. Honor X9c 5G With 6,600mAh Battery Launched in India: Price, Features
  2. iPhone 17 Pro Series Render Shows Repositioned Apple Logo, New MagSafe Design
  3. Lumio Arc 5, Arc 7 Projectors Launched in India: Price and Specifications
  4. Narivetta OTT Release Date: When and Where to Watch This Political Drama Online?
  5. Lava Blaze AMOLED 5G Listed Online; Specifications Revealed
  6. Itel City 100 Launched in India With 5,200mAh Battery, IP64 Rating
  7. Samsung Galaxy Z Flip 7 FE Spotted on Geekbench Again: Report
  8. OpenAI Might Combine Reasoning and Multimodality With GPT-5 AI Model
  9. Infinix Hot 60 5G+ to Launch in India on This Day With a One Tap AI Button
  10. HP OmniBook 5, OmniBook 3 Series Launched in India: Price, Features
  1. HP OmniBook 5, OmniBook 3 Series With Latest AMD and Snapdragon Processors Launched in India
  2. TikTok Building New Version of App Ahead of Expected US Sale: Report
  3. Infinix Hot 60 5G+ India Launch Date Set for July 11; to Get a Custom One Tap AI Button
  4. Thammudu Explores an Emotional Night of Conflict, Courage, and Family Ties
  5. Samsung Galaxy Z Flip 7 FE Global Variant Spotted on Geekbench With An Exynos 2400 SoC
  6. OpenAI Plans to Unify Capabilities From Its GPT and O Series With the Release of GPT-5 AI Model
  7. iPhone 17 Pro, iPhone 17 Pro Max Leaked Render Shows Repositioned Apple Logo, New MagSafe Design
  8. Arkane Studios Founder Calls Game Pass 'Unsustainable' After Xbox Layoffs
  9. Karki OTT Release Date: When and Where to Watch it Online?
  10. Xiaomi 16 Series Could Drop Leica Branding to Prioritise Proprietary Camera Technology
Gadgets 360 is available in
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.