iOS 7 Beta 4 Contains Fix For Malicious Charger Hack

by

iphone_charger_chinaEarlier this year, a trio of computer scientists discovered a flaw in iOS 6 that would theoretically allow an iPhone or an iPad to be hacked using a "malicious USB charger."

The researchers demonstrated the hack at the Black Hat Convention in Las Vegas today, showing off a custom built charger that was plugged into an iPhone. The charger, which took a week to design and cost just $45 in components, contained a small Linux computer programmed to launch an attack on iOS devices.

In this presentation, we demonstrate how an iOS device can be compromised within one minute of being plugged into a malicious charger. We first examine Apple’s existing security mechanisms to protect against arbitrary software installation, then describe how USB capabilities can be leveraged to bypass these defense mechanisms. To ensure persistence of the resulting infection, we show how an attacker can hide their software in the same way Apple hides its own built-in applications.

According to a report from Reuters, the security flaw that could allow a fake charging station to potentially hack an iOS device has already been repaired in iOS 7.

Apple said the issue had been fixed in the latest beta of iOS 7, which has already been released to software developers.

"We would like to thank the researchers for their valuable input," Apple spokesman Tom Neumayr said.

During the convention, the researchers successfully used the device they had constructed to hack into an iPhone, programming it to dial another phone. The group, worried that criminals might use the hack in malicious ways, publicized the issue in the spirit of "white hat" hacking.

iOS 7, which is already in the hands of developers, is expected to be released to the general public this fall. Along with a fix for the charger hack, it also includes a number of new features like an overhauled Notification Center, a new Control Center, and a complete redesign. Apple continues to regularly release beta updates for the operating system, adding additional minor performance boosts and changes ahead of its official release.

Related Forum: iOS 7

Popular Stories

iPhone SE 4 Vertical Camera Feature

iPhone SE 4 Production Will Reportedly Begin Ramping Up in October

Tuesday July 23, 2024 2:00 pm PDT by
Following nearly two years of rumors about a fourth-generation iPhone SE, The Information today reported that Apple suppliers are finally planning to begin ramping up mass production of the device in October of this year. If accurate, that timeframe would mean that the next iPhone SE would not be announced alongside the iPhone 16 series in September, as expected. Instead, the report...
Read Full Article68 comments
iPhone 17 Plus Feature

iPhone 17 Lineup Specs Detail Display Upgrade and New High-End Model

Monday July 22, 2024 4:33 am PDT by
Key details about the overall specifications of the iPhone 17 lineup have been shared by the leaker known as "Ice Universe," clarifying several important aspects of next year's devices. Reports in recent months have converged in agreement that Apple will discontinue the "Plus" iPhone model in 2025 while introducing an all-new iPhone 17 "Slim" model as an even more high-end option sitting...
Read Full Article160 comments
Generic iPhone 17 Feature With Full Width Dynamic Island

Kuo: Ultra-Thin iPhone 17 to Feature A19 Chip, Single Rear Camera, Semi-Titanium Frame, and More

Wednesday July 24, 2024 9:06 am PDT by
Apple supply chain analyst Ming-Chi Kuo today shared alleged specifications for a new ultra-thin iPhone 17 model rumored to launch next year. Kuo expects the device to be equipped with a 6.6-inch display with a current-size Dynamic Island, a standard A19 chip rather than an A19 Pro chip, a single rear camera, and an Apple-designed 5G chip. He also expects the device to have a...
Read Full Article162 comments
iPhone 16 Pro Sizes Feature

iPhone 16 Series Is Less Than Two Months Away: Everything We Know

Thursday July 25, 2024 5:43 am PDT by
Apple typically releases its new iPhone series around mid-September, which means we are about two months out from the launch of the iPhone 16. Like the iPhone 15 series, this year's lineup is expected to stick with four models – iPhone 16, iPhone 16 Plus, iPhone 16 Pro, and iPhone 16 Pro Max – although there are plenty of design differences and new features to take into account. To bring ...
Read Full Article130 comments
icloud private relay outage

iCloud Private Relay Experiencing Outage

Thursday July 25, 2024 3:18 pm PDT by
Apple’s iCloud Private Relay service is down for some users, according to Apple’s System Status page. Apple says that the iCloud Private Relay service may be slow or unavailable. The outage started at 2:34 p.m. Eastern Time, but it does not appear to be affecting all iCloud users. Some impacted users are unable to browse the web without turning iCloud Private Relay off, while others are...
Read Full Article82 comments

Top Rated Comments

kalsta Avatar
kalsta
143 months ago
I'm curious to see a picture of this malicious charger.

Score: 25 Votes (Like | Disagree)
moxin Avatar
moxin
143 months ago
Still, not enough to make me upgrade to iOS 7. Nice try Apple

Yup people at Apple are really tying hard to get you back son.
Score: 10 Votes (Like | Disagree)
macs4nw Avatar
macs4nw
143 months ago
.....Apple said the issue had been fixed in the latest beta of iOS 7, which has already been released to software developers.

"We would like to thank the researchers for their valuable input," Apple spokesman Tom Neumayr said.

Article Link: iOS 7 Beta 4 Contains Fix For Malicious Charger Hack (https://www.macrumors.com/2013/07/31/ios-7-beta-4-contains-fix-for-malicious-charger-hack/)

APPLE took that really well, for a change. They haven't always been so gracious in the past.
Score: 9 Votes (Like | Disagree)
JAT Avatar
JAT
143 months ago
APPLE took that really well, for a change. They haven't always been so gracious in the past.

Perhaps the lack of blackmail was a factor.
Score: 6 Votes (Like | Disagree)
lolkthxbai Avatar
lolkthxbai
143 months ago
Nice! It's good to see security researchers pushing the limits to uncover any exploits and share them in the spirit of "white hat" hacking.

----------

I'm glad there's a fix coming, but I always use Apple branded chargers. :cool:

After this and the news of Chinese chargers possibly electrocuting people, I wouldn't be surprised if people thought twice before buying that $2-$5 charger on amazon.
Score: 4 Votes (Like | Disagree)
LeandrodaFL Avatar
LeandrodaFL
143 months ago
Still, not enough to make me upgrade to iOS 7. Nice try Apple
Score: 3 Votes (Like | Disagree)
Read All Comments