Thursday, 23 April 2015 09:40

'No iOS Zone': How a DoS attack can be made on iPads and iPhones


Security researchers have revealed the existence of a vulnerability that could be used to effectively disable iOS devices in range of a malicious Wi-Fi access point.

Skycure co-founder Yair Amit has described an accidental discovery following the installation of a new router.

With a certain router configuration, iOS apps on connected devices started crashing.

The company's investigations determined the cause was a bug in the way iOS handles SSL certificates, and that a malicious certificates could be generated to cause crashes.

Amit wrote "As SSL is a security best practice and is utilized in almost all apps in the Apple app store, the attack surface is very wide."

Furthermore, the vulnerability also affects iOS itself: "under certain conditions, we managed to get devices into a repeatable reboot cycle, rendering them useless."

The user has to initially connect the device to the network, so this shouldn't be a big problem - right?

Wrong. If the iPad or iPhone is set to automatically connect to a network, perhaps the one in the owner's favourite cafe, then if the malicious router had the same SSID the connection would be made without any action on the owner's part other than taking the device within range.

Furthermore, Skycure has previously shown how attackers can take advantage of the Wi-Fi configurations included in certain carrier settings bundles to cause an automatic connection to a rogue access point. The only requirement is that the device's Wi-Fi interface is turned on.

These two attacks could be combined, according to Amit, creating a "No iOS Zone" that captures iOS devices and causes them to crash repeatedly until they are moved out of range.

The issue was reported to Apple last October, and iOS 8.3 "seem to resolve some of the issues" according to a presentation given by Amit and co-founder Adi Sharabani at this week's RSA Conference 2015 in San Francisco.

WEBINAR event: IT Alerting Best Practices 27 MAY 2PM AEST

LogicMonitor, the cloud-based IT infrastructure monitoring and intelligence platform, is hosting an online event at 2PM on May 27th aimed at educating IT administrators, managers and leaders about IT and network alerts.

This free webinar will share best practices for setting network alerts, negating alert fatigue, optimising an alerting strategy and proactive monitoring.

The event will start at 2pm AEST. Topics will include:

- Setting alert routing and thresholds

- Avoiding alert and email overload

- Learning from missed alerts

- Managing downtime effectively

The webinar will run for approximately one hour. Recordings will be made available to anyone who registers but cannot make the live event.



Security requirements such as confidentiality, integrity and authentication have become mandatory in most industries.

Data encryption methods previously used only by military and intelligence services have become common practice in all data transfer networks across all platforms, in all industries where information is sensitive and vital (financial and government institutions, critical infrastructure, data centres, and service providers).

Get the full details on Layer-1 encryption solutions straight from PacketLight’s optical networks experts.

This white paper titled, “When 1% of the Light Equals 100% of the Information” is a must read for anyone within the fiber optics, cybersecurity or related industry sectors.

To access click Download here.


Stephen Withers

joomla visitors

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences and a PhD in Industrial and Business Studies.



Recent Comments