Security Market Segment LS
Tuesday, 09 August 2016 10:09

iOS updated again for security to iOS 9.3.4 - high priority


If you recently updated your iOS version to 9.3.3 and thought that was it until iOS 10, there’s an urgent update to iOS 9.3.4 for security you should get.

Team Pangu is an iPhone jailbreaking team that discovers vulnerabilities in Apple’s iOS operating system for its various iDevices.

The hacking team recently released a jailbreak for iOS 9.3.3, but with Apple’s new iOS 9.3.4, that jailbreak is rendered ineffective.

As iTWire’s Sam Varghese noted in an article late last week, Apple has indeed started up an invitation-only bug bounty programme paying up to a US $200,000 reward for information on the highest level hacks.

Clearly, with iOS security of paramount concern, especially in a world where Android devices appear to be suffering regular new vulnerabilities and exposed third-party app stores, it’s great to see Apple really speeding up its customer security efforts.

Apple itself reports that iOS 9.3.4 fixes a problem where "an application may be able to execute arbitrary code with kernel privileges", and notes that "a memory corruption issue was addressed through improved memory handling".

The vulnerability is CVE-2016-4654 and — surprise, surprise the company that Apple credits is the aforementioned Team Pangu.

Clearly, it’s a serious problem with the Australian federal government’s StaySmartOnline site issuing a high-priority alert that quotes the US-CERT (US Computer Emergency Response Team) stating that the unpatched vulnerability "may allow a remote attacker to take control of an affected system".

The update is available for "iPhone 4s and later, iPad 2 and later and iPod touch (5th generation and later)".

As StaySmartOnline advises: "Updates close vulnerabilities in computer systems that remote attackers can otherwise use to gain access to systems or information (such as online banking details).

"A vulnerability is a weakness that can leave a computer and its systems open to attack. Attacks can be carried out a number of ways, including through malicious software (malware) such as viruses and spyware that can monitor a users’ activity on a computer and stop systems operating properly."

So, if you haven’t updated yet, please go to Settings, General, Software Update on your iOS device and update it as soon as you can to stay safe!



26-27 February 2020 | Hilton Brisbane

Connecting the region’s leading data analytics professionals to drive and inspire your future strategy

Leading the data analytics division has never been easy, but now the challenge is on to remain ahead of the competition and reap the massive rewards as a strategic executive.

Do you want to leverage data governance as an enabler?Are you working at driving AI/ML implementation?

Want to stay abreast of data privacy and AI ethics requirements? Are you working hard to push predictive analytics to the limits?

With so much to keep on top of in such a rapidly changing technology space, collaboration is key to success. You don't need to struggle alone, network and share your struggles as well as your tips for success at CDAO Brisbane.

Discover how your peers have tackled the very same issues you face daily. Network with over 140 of your peers and hear from the leading professionals in your industry. Leverage this community of data and analytics enthusiasts to advance your strategy to the next level.

Download the Agenda to find out more


Alex Zaharov-Reutt

One of Australia’s best-known technology journalists and consumer tech experts, Alex has appeared in his capacity as technology expert on all of Australia’s free-to-air and pay TV networks on all the major news and current affairs programs, on commercial and public radio, and technology, lifestyle and reality TV shows. Visit Alex at Twitter here.



Recent Comments