Major Security Flaw in iOS

Apple has left a major security hole in iOS and because of its dubious app approval system, malicious apps can potentially roam about the iDevices and steal passwords stored on Keychain and personal information (Source:  The Register).  Only yesterday, we were talking about Samsung's own security problem with its flawed digital signing.  Now, it's Apple's turn.

As of this moment, there is no word whether a fix is forthcoming.  And given the seriousness of this flaw, it's better that Apple address this as soon as possible.  What has made this flaw worse is that it gives malware the ability to circumvent Apple's sandboxing between apps and let it steal information from other apps.

This flaw was discovered six months ago and no word from Apple.  Either it does not take this seriously or that it has yet to find a solution.  Both scenarios are worrying for the average mobile warrior.

No comments: