iPhone, iPad security flaw revealed; Apple issues software patch

51649 full
51649 full

Apple revealed a flaw Friday in its iOS operating system for iPhones and iPad tablets that gives hackers potential access to email and login information, ZDNet reported. A patch was issued for iPhone and iPad users, but there may be ramifications for users of Mac laptops as well.

Apple on Friday revealed a major SSL (Secure Socket Layer) vulnerability in its software that affects all devices, allowing hackers to intercept and alter communications such as email and login credentials for countless Apple hardware users.

According to ZDNet, the patch was issued for the more recent iPhones (4 and later), iPod touch (5th generation) and iPad (2nd generation).

Apple explained the security flaw on its own website:

Impact: An attacker with a privileged network position may capture or modify data in sessions protected by SSL/TLS.

Ars Technica reported that the flaw may extend to Mac laptops, for which there is yet no security patch:

A critical iOS vulnerability that Apple patched on Friday gives attackers an easy way to surreptitiously circumvent the most widely used technology for preventing eavesdropping on the Internet. That made the security bug about as dire as one can be. Now, there's strong evidence that the same flaw also exposes sensitive e-mail and Web communications on fully patched versions of OS X, with no indication that there is a patch currently available for the millions of people who use the Mac operating system.

For its part, Apple wasn't discussing the potential vulnerability beyond the statements on its website.

Have you noticed any untoward activity on your Apple devices? Let us know in the comments below, on Facebook or on Twitter ("@" mention @KPCC).

blog comments powered by Disqus