iOS bug lets people crash others’ devices

iOS bug lets people crash others’ devices

Following the news that an iOS bug lets people crash others' iPhones by sending them one line of text Mark James, security specialist at ESET and Tim Erlin, director products at Tripwire explain how it works and what the user can do.

Mark James, security specialist at ESET: “These type of “Bugs” have been around since the birth of operating systems(OS). When the OS tries to interpret something it cannot understand or fully achieve it has a few options open to it. One of those options is a reboot. I am sure we have all had our desktop machines reboot after a seemingly random event has triggered the dreaded reboot. These mobile computers we call phones today have the same core instructions – if all else fails then reboot. This bug manifests itself when banner notifications are switched on for SMS messages and then displayed on your phone. The resulting action (SMS display) is not able to be fully displayed, thus a reboot is the only option. This does not necessarily mean it’s a security flaw or indeed an exploitable bug but Apple will none the less try and rectify this as soon as they possibly can.”

Tim Erlin, Director of Product Management at Tripwire: “This is essentially a remote denial of service vulnerability, using SMS as the vector. The ability to remotely disable someone’s iPhone could be useful in targeted attacks. Imagine if an organisation's information security team was suddenly unable to communicate while an attack on their organisation was being carried out. There are likely other ways to exploit this vulnerability, though it’s unclear if they might be useful to attackers. The libraries used for parsing text are unlikely to be specific to the messaging app, and so the issue may appear in other places. Time will tell if security researchers or Apple discover them first.”

Read more

Latest News

Read More

Process over top-down enforcement: How to empower employees to prevent data leaks

29 November 2024

Newsletter

Receive the latest HR news and strategic content

Please note, as per the GDPR Legislation, we need to ensure you are ‘Opted In’ to receive updates from ‘theHRDIRECTOR’. We will NEVER sell, rent, share or give away your data to third parties. We only use it to send information about our products and updates within the HR space To see our Privacy Policy – click here

Latest HR Jobs

Vacancy Reference Number: HRA/FS/HR/UK-R3 Position title: Human Resources Assistant Reports to: Human Resources Manager Location: Muslim Hands, 148 – 164 Gregory Boulevard, Gregory House, Nottingham,

Join Sage as our Director of HR – Mergers & Acquisitions, a high-visibility role where you’ll lead M&A efforts for the People Function-from due diligence

Job Details: HR Director – Mergers & Acquisitions Join Sage as our Director of HR – Mergers & Acquisitions, a high-visibility role where you’ll lead

Job Details: HR Director – Mergers & Acquisitions Join Sage as our Director of HR – Mergers & Acquisitions, a high-visibility role where you’ll lead

Read the latest digital issue of theHRDIRECTOR for FREE

Read the latest digital issue of theHRDIRECTOR for FREE