Sunday, July 10, 2011
Alert: Apple iPhone, iPad, Touch PDF exploit
I just read the following article about how Apple is rushing to patch and exploit which malware writers can use and deliver via a PDF, either via a site or email, and moments later received a suspicious email, which was an obvious fake using Google as the sender.
http://m.theage.com.au/technology/security/hackers-expose-flaw-in-apple-ipad-iphone-software-20110707-1h3e1.html
That was a gentle prod and I felt I should let my customers know about the exploit.
If you're using an iOS device, until Apple has patched their software and you have installed the update, you should take extreme care opening PDFs from people or sites you don't know.
Because it requires quite an effort to update iOS devices, I've seen quite a few devices which aren't being updated. The effort is the updates don't go direct to the device but via a computer. Devices such as the Touch or even and iPhone can go for months without being connected to a computer and updated.
I've found in the past with the iTunes gift voucher malware, a large percentage and a very large number of Apple users (significantly greater than the market share for the devices) took action as a result of the email malware.
Because Apple products feel more like a device than a computer a false sense of security can be created.
Take extreme care with PDFs if you are using an iOS device from Apple. that is an iPad, iPhone or Touch device.
Kelvin Eldridge
www.OnlineConnections.com.au
http://m.theage.com.au/technology/security/hackers-expose-flaw-in-apple-ipad-iphone-software-20110707-1h3e1.html
That was a gentle prod and I felt I should let my customers know about the exploit.
If you're using an iOS device, until Apple has patched their software and you have installed the update, you should take extreme care opening PDFs from people or sites you don't know.
Because it requires quite an effort to update iOS devices, I've seen quite a few devices which aren't being updated. The effort is the updates don't go direct to the device but via a computer. Devices such as the Touch or even and iPhone can go for months without being connected to a computer and updated.
I've found in the past with the iTunes gift voucher malware, a large percentage and a very large number of Apple users (significantly greater than the market share for the devices) took action as a result of the email malware.
Because Apple products feel more like a device than a computer a false sense of security can be created.
Take extreme care with PDFs if you are using an iOS device from Apple. that is an iPad, iPhone or Touch device.
Kelvin Eldridge
www.OnlineConnections.com.au
Subscribe to:
Post Comments (Atom)
Hi Kelvin
ReplyDeleteThank you for being so vigilant and sharing your knowledge in order to help us all protect ourselves.
As always, you go above and beyond the call of duty to help other people.
Kind Regards
Renée