Apple’s iOS devices such as smartphones are considered relatively secure, so when an Apple customer pays more for an Apple device with iOS there is that reassuring feeling of confidence that the investment is worth it for security sake. Next month at the Black Hat conference, however, three security researchers from Georgia Tech will show that using chargers to power up iOS devices may be a direct path to insecurity. The three, Billy Lau, Yeongjin Jang, and Chengyu Song, will discuss how their proof of concept charger can hack Apple devices easily, in under a minute—and, we might add, hack devices running the latest version of Apple iOS.
They pushed software onto an iOS device using a charger. They will provide more detail at the Black Hat event conference which takes place in Las Vegas from July 27 to August 1.
Technology-watching sites have already, though, posted the Black Hat web site’s overview description of the upcoming talk. The one word that stands out in the summary is “alarming.” They wrote that “Apple iOS devices are considered by many to be more secure than other mobile offerings. In evaluating this belief, we investigated the extent to which security threats were considered when performing everyday activities such as charging a device.”
That is when the “A” word came in. They said, “The results were alarming: despite the plethora of defense mechanisms in iOS, we successfully injected arbitrary software into current-generation Apple devices running the latest operating system (OS) software.”
Their investigation did not need a jailbroken device and it did not need any user interaction.
Read more at: Phys.org