Last Friday, February 21, Apple released iOS updates to address a specific vulnerability that could allow an attacker with a “privileged network position” to capture or modify data protected by SSL/TLS*. In other words, iOS was vulnerable to a man-in-the-middle attack where an attacker could pose as a trusted website to intercept communications, acquiring sensitive information such as login credentials and passwords, or injecting harmful malware.
Protect Yourself: Update your iOS Device A.S.A.P.
iOS Update 7.0.6 for Newer Devices
If you have one of the iOS models listed below and you haven’t already, update your software to the current release, 7.06. This update is available for:
- iPhone 4 and later
- iPod Touch (5th generation)
- iPad 2 and later
iOS Update 6.1.6 for Older Devices
If you have one of the iOS models listed below and you haven’t already, update your software to the current release, 6.1.6. This update is available for:
- iPhone 3GS
- iPod touch (4th generation)
How to Update Your iPhone, iPad, or iPod Touch
For information on how to update your iOS, please see:
- http://support.apple.com/kb/ht4623
* SSL and TLS are cryptographic schemes that allow for secure interaction between a web browser and a web server. All sensitive data (credit card numbers, login information, etc.) that is transmitted over the internet should be protected by SSL/TLS.