Cyber security news for all

More

    Apple’s iOS update and the VPN connection do not work properly

    The next major update for iOS was released a few days ago. In addition to a universal purchase option, as Apple calls the option to buy an app bundle for mobile and desktop, the new software provides mouse and trackpad support for iPads as well as many other innovations.

    Current iOS versions are currently struggling with a faulty VPN function in which certain parts of the data stream are transmitted unencrypted due to old connections. Apple is said to be working on a fix. It is said to have found that the iOS version and the activated VPN connection does not fully handle the data traffic, which in turn leads to insecure connections. Attackers could thus read out the real IP address. Further tapping of user data is also to be feared. The experts see a particular threat to people in countries where surveillance and violations of civil rights are common.

    Apple Is Working On A Solution

    Apple is already working on a solution. According to the experts, users can only help themselves to establish a VPN connection to a server and switch to flight mode. This will initially interrupt all connections. Then the flight mode must be deactivated again and the VPN connection established again. In contrast, simply closing the individual apps should not be sufficient.

    Previous Connections Still Open

    The reason for the security vulnerability is said to be a lack of termination, which may keep connections open for minutes or even hours. This ensures that after activation of the VPN connection, data is still transmitted over the unsecured lines. This affects push notifications, which in most cases were active before the VPN tunnel. But other services can also be at risk. However, newly established connections should not be affected, but this cannot be checked by the user.

    Recent Articles

    Hackers stole thousands of passport data in Argentina

    In response to millions of dollars ransom refused by the Argentine Immigration Service, a ransomware group released passport data from hundreds of thousands of...

    USA wants to improve cybersecurity of space systems

    CISA has published a table this week that summarizes Chinese activities against cybersecurity. Some attacks have succeeded and enabled hackers to gain a foothold...

    Unknown attackers had access to personal data of Warner Music

    Warner Music Group has admitted a security incident in which customers card details were stolen in some of the company's online stores. Warner Music...

    Donald Trump wants to force a sale of TikTok to Microsoft

    It was recently announced that President Donald Trump plans to prohibit business with the owners of TikTok by decree. The American head of state...

    PIN protection is cracked for contactless payments

    Contactless payments by card only works up to typically 30 dollars without a PIN. The PIN is actually  requested for high payments. This is...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox