AI DevwWrld CyberDSA Chatbot Summit Cyber Revolution Summit CYSEC Global Cyber Security & Cloud Expo World Series Digital Identity & Authentication Summit Asian Integrated Resort Expo Middle East Low Code No Code Summit TimeAI Summit

Critical security update on iOS 17.2

Fighting bluetooth threats: Apple fixes critical vulnerabilities with new iOS 17.2 update

The article describes how a recent iOS update fixed major security vulnerabilities related to Safari and the iPhone kernel. It also highlights how hackers exploited weaknesses in the Bluetooth protocol to launch DoS attacks on the device. Finally, we discuss the role of the manufacturers of Flipper Zero, one of the devices used in these attacks, and their condemnation of misuse of the device.

This pill is also available in Italian language

The update to iOS 17.2 led to the resolution of serious vulnerabilities related to the Safari engine, WebKit, and a kernel issue on iPhone, as highlighted by Kate O'Flaherty on Forbes. Such details may not be immediately apparent, as Apple tends not to publicize them widely, but a careful analysis of security updates revealed these important fixes.

Hacking iPhone with a cheap device

Hackers have exploited vulnerabilities in the Bluetooth Low Energy protocol by sending advertising packets that can cause iOS devices to crash. Using a Flipper Zero, an inexpensive but powerful device, modified at the firmware level, it is possible to launch a DoS (Denial of Service) attack within 15 meters of the target, a threat that should not be underestimated despite its limited practical implications.

Apple's response to the Bluetooth attack

Although initially the only defense against these BLE attacks was the use of the iPhone's Extreme Security Mode, Apple has now made a fix with the latest update. While no specific details are provided, the change may involve the implementation of a time-out for advertising package requests, a measure that renders the cyber attackers' aggressive strategy ineffective.

Deal with the responsibility of using Flipper Zero

From the side of the manufacturers of Flipper Zero, there has always been a clear message against the improper use of their devices. Open-source firmware could be manipulated for malicious purposes, but this is explicitly discouraged and not supported by its creators. In the meantime, it is essential that iPhone users update to the new security standards by going into settings and installing iOS 17.2 to protect themselves from these threats.

Follow us on Twitter for more pills like this

12/17/2023 13:50

Marco Verro

Complementary pills

Discovery of a sophisticated malware attack against iPhonesExploited 4 zero-day vulnerabilities in a multi-faceted deadly malware attack on Apple devices

Bluetooth: the new threat to device securityMalicious people can connect via Bluetooth without your consent

Last pills

Italy's success in cybersecurityHow Italy achieved excellence in global cybersecurity: strategies, collaborations, and international successes

IntelBroker alleged breach of Deloitte systemsServer exposed: how Deloitte's security may have been compromised by a cyber attack

Vo1d infections on Android TV boxes: how to protect your devicesLearn the essential measures to protect your Android TV boxes from the dreaded Vo1d malware and keep your devices safe from cyber threats

Hacker attack in Lebanon: Hezbollah under fireTechnological shock and injuries: cyber warfare hits Hezbollah in Lebanon