You knew this would come someday. Who knew it would happen so soon. Of all the major operating systems in the world, why did it have to be Apple’s latest, iOS 11. Here’s the headline:
Just one day after its release, iOS 11.1 hacked by security researchers
I’m pretty sure I locked the door last night before trudging off to bed, knowing with every step that my iPhone, iPad, Mac, and Samsung refrigerator, and washer and dryer would be hacked. Soon. I just didn’t think it would happen overnight.
News of the exploits came from Trend Micro’s Mobile Pwn2Own contest in Tokyo, where security researchers found two vulnerabilities in Safari, the mobile operating system’s browser.
I’m pretty sure vulnerabilities exist all over the place, but that exploits of said vulnerabilities are fewer in number.
It took researchers at Tencent Keen Security Lab a few seconds to exploit two bugs — one in the browser and one in a system service that let a malicious app persist through a reboot.
Does it not seem probable that they knew of the vulnerabilities and had an exploit ready to go? It was a contest, right? What was their incentive?
The bugs earned the researchers $70,000 in awards.
But how did they find my home? How did they know where I put my iPhone? And, what can I do?
Specific details of the exploits won’t be made public until Apple fixes the bugs, or a three-month period of responsible disclosure expires — whichever is first.
That’s fancy talk for non-issue for the rest of us.
It’s not known when Apple will fix the latest iOS 11.1. bugs.
It’s not known exactly how many people over 70 live in or around Orlando, FL, but the number is growing and they still drive too slow and it still doesn’t matter.
It’s not the first time Apple has been left red-faced over security issues. In September, a security researcher dropped a zero-day vulnerability for Apple’s new operating system, macOS High Sierra, on the day that the software was rolled out.
Red-faced? Where are the photos? Maybe that’s just the red-eye from the flash.
Here’s the problem with most of these red-faced moments. Vulnerabilities exist in every operating system; Windows, Linux, iOS, Android, macOS, et al. Exploits exist for many of those vulnerabilities (but not all), but most of those exploits require physical access to your device, or require your device to be connected to an affected network, or require your device to visit a specific website, or use a specific application, or download and install a file, etc., ad nauseam.
This The sky is falling for iPhone users scenario means little to absolutely nothing to most of us, but comes from the same writer who wrote:
Does Face ID make the iPhone X more secure? Depends who’s asking
No. That’s wrong. Whether or not Face ID is more probably depends upon, 1) the answer, 2) the definition of secure, 3) what Face ID is being compared to, or, 4) whether there is any threat to Apple’s marriage of convenience and security. Who is asking matters not.
Oh, and no; your iPhone wasn’t just hacked or hijacked and iOS 11.1 is good to go.