Skip to main content
  1. Home
  2. Mobile
  3. News

Security researchers reveal a flaw that crashes iPhones and iPads over Wi-Fi

Kyle Wiggers
By

ios security flaw reboot cycle iphone cellular signal bars
Greg Mombert/Digital Trends
Security flaws fall on a wide spectrum of severity. On the one end, there are issues that are so exceedingly minor as to hardly warrant any attention, and on the other end, there are flaws that are end-of-the-world, destructive oversights. The iOS flaw uncovered by Skycure researchers Yair Amit and Adi Sharabani, sorry to say, lands in the destructive category.

It has to do with a vulnerability in iOS 8’s handling of secure socket layer (SSL) certificates. As the researchers demonstrated at the RSS Conference in San Francisco this week, certificates manipulated by hackers can lead Internet-connected apps on iPhones and iPads to crash repeatedly, eventually causing the entire operating system to crash. The problem with SSL certificates is coupled with a bug that lets malicious programmers force iOS devices to connect to a Wi-Fi network of their choosing, which makes for a seriously disruptive hack.

Recommended Videos

The researchers call it a “No iOS Zone.” Theoretically, an attacker could create a fake network, automatically capture any iOS device in range, and then release the malformed code, causing some connected iPhones and iPads to endlessly reboot. As long as the worst-affected devices are in range of the signal, the cycle is inescapable — It’s impossible to reach the Wi-Fi settings menu before shutoff begins again.

Related

In the interest of preventing would-be mischief makers from wreaking havok, Skycure’s withholding the attack’s technical details. In a blog post published Tuesday, the firm says it’s reported the security flaw to Apple, but in the interim, recommends iPhone and iPad users disable Wi-Fi except when absolutely needed. The post also recommends updating to iOS 8.3, which seems to include a few mitigatory measures.

Skycure’s report comes on the heels of a separate disclosure from SourceDNA. The security firm detailed a flaw in 1,500 iOS apps that could be exploited by hackers to steal sensitive information such as credit card numbers and encrypted passwords. Like Skycure, the SourceDNA suggested iPhone, iPad, and Mac users turn off Wi-Fi in public unless necessary.

Editors' Recommendations

Topics
Kyle Wiggers
Kyle Wiggers
Former Digital Trends Contributor
Kyle Wiggers is a writer, Web designer, and podcaster with an acute interest in all things tech. When not reviewing gadgets…
3 reasons why I’ll actually use Anker’s new iPhone power bank
A person holding the Anker MagGo Power Bank.

Power banks are a necessary evil, and even if you don’t consider yourself a “power user” who's likely to drain a phone’s battery in less than a day, there will be times when one comes in handy. And when I am forced to carry one, I want it to be as helpful and versatile as possible.

I’ve been trying Anker’s MagGo Power Bank 10K -- meaning it has a 10,000mAh cell inside it -- and there are three reasons why I'm OK with it taking up valuable space in my bag.
It has a screen on it

Read more
Here’s how Apple could change your iPhone forever
An iPhone 15 Pro Max laying on its back, showing its home screen.

Over the past few months, Apple has released a steady stream of research papers detailing its work with generative AI. So far, Apple has been tight-lipped about what exactly is cooking in its research labs, while rumors circulate that Apple is in talks with Google to license its Gemini AI for iPhones.

But there have been a couple of teasers of what we can expect. In February, an Apple research paper detailed an open-source model called MLLM-Guided Image Editing (MGIE) that is capable of media editing using natural language instructions from users. Now, another research paper on Ferret UI has sent the AI community into a frenzy.

Read more
There’s a big problem with the iPhone’s Photos app
The Apple iPhone 15 Plus's gallery app.

While my primary device these days continues to be my iPhone 15 Pro, I’ve dabbled with plenty of Android phones since I’ve been here at Digital Trends. One of my favorite brands of phone has been the Google Pixel because of its strong suite of photo-editing tools and good camera hardware.

Google first added the Magic Eraser capability with the Pixel 6 and Pixel 6 Pro, which is a tool I love using. Then, with the Pixel 8 series, Google added the Magic Editor, which uses generative AI to make edits that wouldn’t be possible otherwise. There are also tools like Photo Unblur, which is great for old photographs and enhancing images that were captured with low-quality sensors.

Read more