Another Major https Vulnerability in iOS 7.1

It seems that the new update Apple released Tuesday for iOS was more important than originally thought. iOS 7.1.1 patches a vulnerability that would allow a “man-in-the-middle” to intercept encrypted data that is being transmitted using SSL over https connections.

According to Ars Technica, this bug allows a third party to open two connections. One would be the connection to the site you believe you are accessing, while the second connection would also send your data to a third party without your knowledge. This bug effects any device running iOS 7.1 or earlier.

It is recommended that this update be installed on your devices immediately. To install the update open ‘Settings’, then ‘General’, then ‘Software Update’.

20140423-204721.jpg

Leave a Reply