Wi-Fi hack creates 'no iOS zone' that cripples iPhones and iPads

The only solution for Apple users? Leave the affected area immediately

A newly revealed bug in iOS lets attackers force iPhones and iPads into restart loops, repeatedly crashing and rebooting, using nothing but aWi-Fi network.

Once the user has entered what its discoverer, security researchers Skycure, dubs the “no iOS Zone”, there’s no way to fix their phone other than escaping the range of the malicious network; every time it reboots, it crashes almost immediately.

The basis of the attack uses a “specially crafted SSL certificate”, typically used to ensure a secure connection, to trigger a bug in the operating system that crashes out any app using SSL.

“With our finding, we rushed to create a script that exploits the bug over a network interface,” the researchers wrote. “As SSL is a security best practice and is utilized in almost all apps in the Apple app store, the attack surface is very wide. We knew that any delay in patching the vulnerability could lead to a serious business impact: an organized denial of service (DoS) attack can lead to big losses.”

But in addition to crashing individual apps, the bug can be used to crash the underlying operating system as well. “With heavy use of devices exposed to the vulnerability, the operating system crashes as well. Even worse, under certain conditions, we managed to get devices into a repeatable reboot cycle, rendering them useless.

“Even if victims understand that the attack comes from a Wi-Fi network, they can’t disable the Wi-Fi interface in the repeated restart state as shown in the video.”

When combined with an earlier vulnerability, named “Wi-Figate”, which lets attackers force a device to automatically connect to a given WiFi network, Skycure warns that an attack could be crafted which would deny service to any iOS attack in a given area. “Victims in range cannot do anything about it. Think about the impact of launching such an attack on Wall Street, or maybe at the world’s busiest airports, or at large utility plants. The results would be catastrophic.”

The researchers say they have warned Apple of the error, and are refraining from releasing technical details about it until after the company has issued a fix. Apple did not respond to a comment request ahead of publication.

Contributor

Alex Hern

The GuardianTramp

Related Content

iPhones and iPads are vulnerable to six-minute hack, experts warn

Researchers say hack targeting Apple's password management system poses serious security threat to businesses. By Josh Halliday

Josh Halliday

10, Feb, 2011 @3:50 PM

Article image
Your iPhone's password demands aren't just annoying. They're a security flaw
A developer has warned it is possible to create a phishing attack based on a fake sign-in request for Apple ID credentials

Alex Hern

12, Oct, 2017 @11:17 AM

Article image
'Jailbreak' for iPhones wins $1m bounty
Computer exploit merchant Zerodium says it paid research team that worked out how to ‘jailbreak’ latest version of Apple’s mobile operating system, iOS 9.1.

Alex Hern

03, Nov, 2015 @4:13 PM

Article image
Apple fixes HomeKit bug that allowed remote unlocking of users' doors
Security flaw in latest iPhone and iPad iOS 11.2 software meant hackers could potentially gain remote control of lights, cameras and locks in smart homes

Samuel Gibbs

08, Dec, 2017 @10:41 AM

Article image
Apple faces lawsuit over storage space on iPhones and iPads
Firm failed to tell consumers that iOS 8 software could take up as much as 23.1% of advertised storage capacity, claims lawyer

Samuel Gibbs

02, Jan, 2015 @5:48 PM

Article image
iOS update: Apple apologises for breaking new iPhones
An update to iOS 8 released on Wednesday left iPhone owners unable to make phone calls. By Alex Hern

Alex Hern

25, Sep, 2014 @10:17 AM

Article image
Take that, FBI: Apple goes all in on encryption
Apple’s newest encryption tool better secures files on all its devices, just the latest in a move to widespread encryption in the tech industry

Nathaniel Mott in New York

15, Jun, 2016 @10:42 AM

Article image
Wi-Fi security, multiple sim cards and tablet pics – tech questions answered
How can you use public Wi-Fi and keep your data secure? Is it possible to get one account for all your devices; and how can you get pictures from a tablet onto a PC?

Daniel Tomlinson

12, Oct, 2014 @5:00 AM

Article image
New vulnerability allows users to 'jailbreak' iPhones
Exploit is first to work on fully-updated devices for four years and could be used maliciously

Alex Hern

26, May, 2020 @3:24 PM

Article image
Apple Developer site hack: doubts cast on Turkish hacker's claims
Guardian investigation raises questions over claims by Turkish researcher that he hacked into Apple's Developer portal. By Charles Arthur

Charles Arthur

26, Jul, 2013 @7:23 AM