ALL >> Computers >> View Article
Apple Releases Software Update For Ipad, Iphone And Ipad Touch, Patches Security Flaw
Apple has released another security update in less than two weeks to bolster the security of iPad, iPhone and iPod touch. The latest update iOS 4.3.5 resolves a validation issue associated with the handling of X.509 certificates. X.509 is one of the standards used for defining digital certificates. The vulnerability could allow an attacker, who has already gained privileged access to a network to identify various Secure Socket Layer (SSL)/Transport Layer Security (TLS) sessions, intercept the traffic and extract or alter the transmitting content. As such, for successful exploitation of the vulnerability, an attacker must have already compromised a machine and have attained access to the network. The update is applicable to iPad, iPhone 3GS, iPhone 4 (GSM), iPod Touch 3G and 4G. Apple has also released a separate update iOS 4.2.5 for iPhone 4 (CDMA) users for addressing the same security issue.
Attackers may gain access to confidential personal information related to the individuals by exploiting the vulnerability. They may use the extracted data for fraudulent purposes. They may even devise more sophisticated schemes ...
... to extract further information. Earlier in the month, Apple issued an update to fix an issue that allowed people to unlock or jailbreak their devices, and run restricted software. Apple was relatively quick in issuing the out-of-cycle update.
Vulnerabilities in software products may arise due to coding errors, wrong assumption of the operating environment, creation of new exploits by cybercriminals among others. Negligence and lack of security awareness among users also provide opportunities for attackers to exploit flaws and gain unauthorized access to devices. Vulnerabilities come into light either by their active exploitation by attackers, or on their identification by independent security researchers or professionals affiliated to various developers. In this case, security researchers affiliated to BSI and SpiderLabs identified the vulnerabilities. Developers must regular test the strength of the software products through penetration testing, detect and mitigate security flaws. Professionals qualified in masters of security science may help developers in understanding the prevalent risks in the business environment.
While attackers solely concentrate on exploiting flaws, developers face the constant challenge of developing innovative products to beat the competition. They also face shortage of experts in meeting the challenges posed by cybercriminals. Again, attackers take advantage of the time lag between patch release by a developer and its subsequent implementation by individuals and organizations. Threats in the IT space are vibrant and professionals must update their technical skills and know-how by undertaking online university degree programs and security certifications.
Individuals must keep track of the security updates by subscribing to alerts, following security blogs and advisories by developers. E-tutorials and online degree programs may help individuals in understanding and implementing cyber security fundamentals. Users must immediately install the security update to safeguard their devices and sensitive information stored on them. Proactive approach to security is required to deal with ever evolving and sophisticated threats in the IT environment. Developers and Internet security firms must coordinate to improve IT security awareness among the end-users and improve security practices.
Add Comment
Computers Articles
1. 00al556 Ibm 550-watts Platinum Power Supply For X3650 M4: Reliable And Energy-efficient Power For Enterprise ServersAuthor: Server Tech Central
2. Iot Identity And Access Management (iam) Market : Driving Secure Innovation In Connected Ecosystems
Author: Umangp
3. Why Should You Plan Blinkit Onboarding Before Market Expansion And How Can Zane Marketing Help You Grow Faster
Author: Zane Marketing
4. Customer Identity And Access Management (ciam) Market : Strengthening Security And Customer Trust
Author: Umangp
5. How To Start Your Website Redesign Project?
Author: brainbell10
6. Sap Compliance In Manufacturing: Closing The Gaps Grc Leaves Behind
Author: Mansoor Alam
7. Speech Analytics Market : Unlocking Actionable Insights From Customer Conversations
Author: Umangp
8. Data Preparation Tools Market: How Ai And Cloud-based Solutions Are Transforming Modern Data Workflows
Author: Umangp
9. How To Setup And Create Instagram Ads?
Author: brainbell10
10. Why Digital Business Cards Are The Future Of Professional Networking
Author: WhyTap
11. End To End Sataware Product Development Is The Process Of Identifying Market Opportunities To Hire Flutter Developer, Connecting User Needs And Requir
Author: brainbell10
12. Dynamics Nav To Business Central Upgrade Guide
Author: brainbell10
13. Data Governance Framework: Building Trust In The Digital Age
Author: Umangp
14. A Complete Guide To Dynamics 365 Warehouse Management
Author: brainbell10
15. Conversational Ai In Intelligent Contact Centers: Market Outlook And Future Growth To 2028
Author: Umangp






