Apple Security Flaw Is “As Bad As You Could Imagine”

The Slatest
Your News Companion by Ben Mathis-Lilley
Feb. 22 2014 11:30 AM

Apple Security Flaw Is “As Bad As You Could Imagine”

464345225-apps-are-seen-on-apple-iphone-5s-january-22-2014-in
IPhones, iPads and Mac computers are vulnerable to a so-called man-in-the-middle (MITM) attack

Photo by KAREN BLEIER/AFP/Getty Images

Apple acknowledged a major security flaw in its software for mobile devices on Friday but did so in such a low-key way that most users likely aren’t aware of just how at risk they might be if they fail to update their software. Plus, experts are saying that Mac computers could be even more exposed to attacks than the mobile software. So what is the problem? A Secure Socket Layer (SSL) vulnerability allowing hackers to intercept information that was supposed to be encrypted.

24/7 Wall Street explains:

Let’s say the attacker had access to the same network over an unsecured WiFi connection in a coffee shop or restaurant. He could impersonate a protected site such as Facebook or Gmail and alter any data passed between the iPhone and the site.
Advertisement

Johns Hopkins University cryptography professor Matthew Green summarizes it succinctly to Reuters:  "It's as bad as you could imagine, that's all I can say.”

The flaw is certainly embarrassing considering SSL is hardly groundbreaking stuff and has been around for years. Some are speculating that it is this very security hole that allowed the National Security Agency to allegedly access any iOS device, according to documents leaked by Edward Snowden, points out ZDNet. Apple has denied that is the case.

Daniel Politi has been contributing to Slate since 2004 and wrote the "Today's Papers" column from 2006 to 2009. You can follow him on Twitter @dpoliti.

  Slate Plus
Working
Nov. 27 2014 12:31 PM Slate’s Working Podcast: Episode 11 Transcript Read what David Plotz asked a helicopter paramedic about his workday.