The Russian hacker Alexey Borodin found a serious security flaw in the App Store, and joins now for iOS developers this will be closed with iOS 6.
It was not long ago that the Russian hacker Alexey Borodin found a serious security flaw in the App Store, which made it possible to download the In-App purchases for free. Apple has spent the last few weeks to find a solution, and now to all iOS shall notify developers that the hole will be closed with iOS 6.
However, you must bear in mind that a great many still running with iOS 3.2 and iOS 5.1.1, and part of them not to change when Apple releases iOS 6 this version in the autumn. It can be our site with an iPhone 3GS users who do not want to upgrade to a heavier iOS system, or retain the current version pga. an untethered jailbreak.
How to operate it?
A vulnerability that has been discovered in iOS for validation of in-app purchases, by connecting to App Store server directly from an iOS device. An attacker can thus change the DNS to redirect those requests to a server controlled by the attacker.
Using a certificate that is controlled by the attacker, and installed on your iOS device of the user, an attacker can issue an SSL certificate that fraudulently identifies the attacker’s server as an App Store server.
When this fraudulent server will be asked to validate an invalid receipt, it responds as if the receipt was valid.
Apple Fixes Siri Bug Allowing Access to Contacts and …
Apple Fixes Security Flaw And Releases iOS 6.1.3
Apple Fixes Dubious iMessage Flaw, Thieves Can No Longer …
Apple Issues Patch For OS X SSL Security Vulnerability …
iOS Update 10.2.1 Fixes Security Flaws – Tech News
Serious Security Flaws Uncovered In Apple’s (NASDAQ:AAPL …
Critical Apple Zero-Day Flaws Revealed
Apple releases iOS 7.0.6 and 6.1.6 update to fix major SSL …
New iOS 6.1 Security Flaw Grants Limited Access To Phone …
Apple Plans To Fix iOS 6.1 Passcode Lock Bypass Exploit …
Apple Fixes Passcode Bypass in iOS 6.1.3
Apple releases update for iOS, macOS to fix Meltdown and …
security flaw Articles
Apple Gives Facebook Deep Integration Into iOS 6 With Siri …
Apple fixes macOS password flaw
Apple Releases Update for Security Bug in Mac OS High …
Apple iOS 7.0.4 update released to patch Apple Store …
macOS Suffers from a Decade-Old Flaw Revealing Sensitive Data
Norton Identity Safe on the App Store
Apple Fixes Passcode Lock Bug and Other Security Flaws in …