• Welcome to Peterborough Linux User Group (Canada) Forum.
 

Current Apple Iphone zero day attack flaws have been fixed

Started by ssfc72, August 26, 2016, 08:24:05 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

ssfc72

http://www.bbc.com/news/technology-37185544

On the BBC website is an article about the just announced Iphone zero day attack flaw. The flaw is actually 3 zero day flaws put together in one attack.

The flaw was discovered recently and Apple took only 10 days to fix the flaw with an update of IOS tp version 9.3.5
The researchers advised Apple of the attack and gave Apple the time to fix the flaw before they announced the attack to the media.

However, I am wondering if this attack is going to still affect older Iphones and Ipod Touch devices that Apple does not update the IOS.  My Ipod touch is stuck at IOS 6???
Mint 20.3 on a Dell 14" Inspiron notebook, HP Pavilion X360, 11" k120ca notebook (Linux Lubuntu), Dell 13" XPS notebook computer (MXLinux)
Cellphone Samsung A50, Koodo pre paid service

Jason

Quote from: ssfc72 on August 26, 2016, 08:24:05 AM
However, I am wondering if this attack is going to still affect older Iphones and Ipod Touch devices that Apple does not update the IOS.  My Ipod touch is stuck at IOS 6???

I tried to read some of the links in the article and some online searching to see if this affects just the iOS 9.x series or other versions. Couldn't really tell. The one thing I could tell though was that the malware is installed through a text that has a special link. So if you avoid going to suspicious links (or any links) directly from text, you should be okay. Can the iPod Touch get text messages? It's wireless only, isn't it?
* Zorin OS 17.1 Core and Windows 11 Pro on a Dell Precision 3630 Tower with an
i5-8600 3.1 GHz 6-core processor, dual 22" displays, 16 GB of RAM, 512 GB Nvme and a Geforce 1060 6 GB card
* Motorola Edge (2022) phone with Android 13

ssfc72

Ipod Touch devices have only wifi.  They don't have cell phone carrier, text messaging.

But with the wifi, I do have a texting app, so I would be at risk of getting a text message with a Link, that might affect the device.
Mint 20.3 on a Dell 14" Inspiron notebook, HP Pavilion X360, 11" k120ca notebook (Linux Lubuntu), Dell 13" XPS notebook computer (MXLinux)
Cellphone Samsung A50, Koodo pre paid service

Jason

I don't think that receiving the link is the problem. It's if you open the link (tap on it) and that link leads to carefully crafted code that loads malware onto your system.
* Zorin OS 17.1 Core and Windows 11 Pro on a Dell Precision 3630 Tower with an
i5-8600 3.1 GHz 6-core processor, dual 22" displays, 16 GB of RAM, 512 GB Nvme and a Geforce 1060 6 GB card
* Motorola Edge (2022) phone with Android 13

ssfc72

Some more details on the Iphone hack.

http://www.securityweek.com/apple-issues-emergency-fix-ios-zero-days-what-you-need-know

Affects Iphones 4s and later.  5th gen Ipod Touch and later.

Looks like my 3rd gen ipod touch, should not be vulnerable.
Mint 20.3 on a Dell 14" Inspiron notebook, HP Pavilion X360, 11" k120ca notebook (Linux Lubuntu), Dell 13" XPS notebook computer (MXLinux)
Cellphone Samsung A50, Koodo pre paid service

bobf

My 1st-gen iPad is stuck at v5.1.1, IIRC. Not that I use it for much, and definitely not for texting, so I'm going to assume I can continue using it unconcernedly...