BEWARE iPhone Owners! Your Smartphones Can Be Hacked By Just Connecting To Any Wi-Fi



This Hack Bypasses iOS Security With Just A Wi-Fi Connection; Update Your iPhone Now

Do you own an iPhone? If yes, beware, as it is possible for hackers to gain access to an iPhone through a Wi-Fi connection, warns a security expert.

According to Marco Grassi, the Senior Security Researcher of Keen Lab of Tencent, the hack is known as “remotely compromising iOS via Wi-Fi and escaping the Sandbox” that demonstrates how an iOS device can be remotely exploited by just joining a Wi-Fi network and using it to bypass the iOS Sandbox.

“The victim will only have to join the Wi-Fi network, and then the device will be compromised without any user interaction, bypassing all iOS mitigations and sandboxes,” reads a blurb of Grassi’s presentation for the Black Hat Asia hacking conference.

Although Grassi has refused to provide any details on how the idea of hack originated or its working, he is expected to reveal the information on his hacking idea at a 50-minute briefing at the Roselle Junior Ballroom in Marina Bay, Singapore on Thursday.

The sandbox is designed with the aim to prevent malicious activity on the device by stopping apps from accessing or making any changes to the files.



“We will disclose a chain of several vulnerabilities, leading to arbitrary code execution outside of the iOS sandbox and show that the device can be compromised in different ways in the post-exploitation phase,” the blurb added.

Apparently, Apple had already fixed the bugs for its iPhone users with the release of iOS 10.2 update in December, reports Forbes. The issue has been made public only in February though. Those users who have not upgraded their OS to the latest iOS update are requested to do so at the earliest to fix the bugs.

The issue existed in the WebSheet component of iOS that is used when iPhone owners connect to public Wi-Fi networks that require them to go through a login portal, wrote Apple in its explainer notes. Apple was reportedly not doing enough proof checks to stop malicious code from running when that WebSheet was loaded.

“A sandbox escape issue was addressed through additional restrictions,” Apple added, acknowledging Grassi and Trend Micro’s Zero Day Initiative, which rewards researchers for discovering bugs before making it known to tech companies.

Grassi is expected to discuss the possibility of hacking iPhones using Wi-Fi in a talk, which will be held on March 30 at the Black Hat  Asia hacking conference.

 

Kavita Iyer

An individual, optimist, homemaker, foodie, a die hard cricket fan and most importantly one who believes in Being Human

Recent Posts

Windows 10 October 2018 Update Rolls Out Again, Still Full Of Flaws

Windows 10 October Update Still Incompatible With Some AMD GPUs After a delay of over a month, Microsoft finally re-released…

13 hours ago

10 Best Anime Torrent Websites In 2018

All forms of animated media or often referred to as Anime has millions of fans across the globe. Anime is…

17 hours ago

iPhone X, Samsung Galaxy S9, Xiaomi Mi 6 Hacked At Pwn2Own Tokyo 2018

iPhone X, Samsung Galaxy S9, and Xiaomi Mi 6 fall prey to hacking in the Pwn2Own hacking competition in Tokyo…

2 days ago

Microsoft Releases The New Light Theme In Windows 10 19H1 Insider Build 18282

Microsoft rolls out Windows 10 19H1 build 18282 to Insiders with a new light theme Microsoft released Windows 10 Insider…

2 days ago

Microsoft finally re-releases Windows 10 October 2018 Update

Microsoft resumes rollout of Windows 10 October 2018 (version 1809)update Microsoft has finally re-released its latest Windows 10 October 2018…

2 days ago

iPhone X explodes after iOS 12.1 Update

Recently Apple Support has responded to a report of an exploding iPhone X, where the victim is claiming that while he was…

2 days ago