Anti-iPhone WiFi

A new zero day vulnerability in iOS gives anyone with a router the ability to shutdown any iOS powered device.  Security researchers have just recently discovered this bug in Apple’s SSL library which can apparently crash all applications on the device and even trigger an endless reboot cycle to render the device inoperable.  This bug could also be coupled with another bug uncovered two years ago that forces iOS devices to connect to WiFi hotspots as soon as they get into range.  In this way, an iOS user would be unable to use their device when within the radius of any WiFi hotspot configured in this manner.

The good news about this – if there is any – is that the researchers at Skycure that discovered this vulnerability haven’t released the details on exactly how to do it in the hopes that Apple will solve the issues before anyone takes advantage of this issue in the wild.

– Keegan Parrotte

Sources

http://appleinsider.com/articles/15/04/22/researchers-leverage-ssl-bug-to-crash-apple-devices-over-wi-fi-in-no-ios-zone-attack

http://arstechnica.com/security/2015/04/22/ios-bug-sends-iphones-into-endless-crash-cycle-when-exposed-to-rogue-wi-fi/

http://www.theregister.co.uk/2015/04/22/apple_no_ios_zone_bug/

Advertisements