{"id":3880,"date":"2014-02-24T09:27:55","date_gmt":"2014-02-24T14:27:55","guid":{"rendered":"https:\/\/www.kaspersky.com.au\/blog\/?p=3880"},"modified":"2019-11-15T23:16:40","modified_gmt":"2019-11-15T12:16:40","slug":"critical-ios-macos-bug-can-expose-your-confidential-data-update-now","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.au\/blog\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/3880\/","title":{"rendered":"Critical iOS, MacOS  Bug Can Expose Your Confidential Data, Update Now"},"content":{"rendered":"<p>On Friday, Apple released an urgent update to iOS 6 and 7. The only fix in the update is well worth bothering yourself with the update process, and doing it as soon as possible.<\/p>\n<p>As stated by Apple, &#8220;an attacker with a privileged network position may capture or modify data in sessions protected by SSL\/TLS&#8221; as a result of the issue. To put it simply, when you do your online banking, use Gmail or Facebook chat on a public Wi-Fi network (e.g. At the airport or a cafe), any skilled criminal around can read and modify your data, even though you see that small lock in Safari, indicating that your session is protected with encryption. It&#8217;s important to mention, that the vulnerability affects almost any application, not only the web browser. No wonder Apple rushed to push this update.<\/p>\n<div class=\"pullquote\">A recent iOS update fixes a serious encryption flaw, but MacOS is still vulnerable, experts say<\/div>\n<p>The security community spent this weekend trying to figure out the vulnerability&#8217;s nature. A technical analysis is available here, however the most important finding is that MacOS is affected too. Apple hasn&#8217;t released the MacOS patch as of now, but we expect to see it very soon.<\/p>\n<p>What to do:<\/p>\n<p style=\"padding-left: 30px;\">&#8211; update your iPhones, ipods and ipads running iOS 6 and 7. Do it using a trusted, non-open network, e.g. at home.<br \/>\n&#8211; Avoid doing anything sensitive, e.g. banking on your iOS devices before the update<br \/>\n&#8211; The same applies to MacOS devices &#8212; wait for the update. There are third-party updates already, however, applying this may be risky.<br \/>\n&#8211; if you really have to do banking on your device, use the most trusted networks only and implement additional protection measures \u2013 use Google Chrome, plus VPN and a reliable anti-virus.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>On Friday, Apple released an urgent update to iOS 6 and 7. The only fix in the update is well worth bothering yourself with the update process, and doing it<\/p>\n","protected":false},"author":32,"featured_media":3881,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[5],"tags":[14,268],"class_list":{"0":"post-3880","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-news","8":"tag-apple","9":"tag-vulnerabilities"},"hreflang":[{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/3880\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/2999\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/2892\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/3271\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/3880\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/2740\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/critical-ios-macos-bug-can-expose-your-confidential-data-update-now\/3880\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.au\/blog\/tag\/apple\/","name":"apple"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/posts\/3880","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/users\/32"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/comments?post=3880"}],"version-history":[{"count":1,"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/posts\/3880\/revisions"}],"predecessor-version":[{"id":25290,"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/posts\/3880\/revisions\/25290"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/media\/3881"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/media?parent=3880"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/categories?post=3880"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.au\/blog\/wp-json\/wp\/v2\/tags?post=3880"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}