iOS 15 bug could send your iPhone into an endless loop of crashes

A security researcher has reported an iOS 15.2 bug that can render an iPhone completely useless even after a restore. Apple apparently is aware of the bug and promises a fix in early 2022.

Trevor Spiniolas has discovered a bug that can be exploited through the HomeKit API. An attacker exploiting the bug would use the API to change the names of a user’s HomeKit devices to something extremely lengthy (the test name had 500,000 characters), which will in turn be backed up to the associated iCloud account. If the user has Home devices enabled in Control Center, the iPhone will become unresponsive.

Spiniolas says rebooting or restoring the device doesn’t help as long as the user continues to sign into the same iCloud account. There are workarounds but the only fix would be to rename the HomeKit devices using the API.

Apple is aware of the issue, according to Spiniolas, who reported the bug in August. He says he informed Apple he would be publishing the results of his findings in January 2022 and criticizes Apple’s “lack of transparency” that “poses a risk to the millions of people who use Apple products in their day-to-day lives by reducing Apple’s accountability on security matters.” He says Apple has delayed the fix, which was originally due to arrive in December, until early 2022.

While it may seem like a farfetched case, Spiniolas warns that the issue raises the possibility of ransomware. In addition to changing the names of a user’s HomeKit devices, he also paints a picture where an attacker “could also send invitations to a Home containing the malicious data to users on any of the described iOS versions, even if they don’t have a HomeKit device.”

He purports that an attacker “could use email addresses resembling Apple services or HomeKit products to trick less tech-savvy users (or even those who are curious) into accepting the invitation and then demand payment via email in return for fixing the issue.”

Spiniolas outlines how to fix the issue by restoring the iPhone without signing into the same iCloud account, then singing in after setup and immediately disabling the “Home” switch. He also recommends removing Home shortcuts from the Control Center.

Note: When you purchase something after clicking links in our articles, we may earn a small commission. Read our affiliate link policy for more details.

Michael Simon has been covering Apple since the iPod was the iWalk. His obsession with technology goes back to his first PC—the IBM Thinkpad with the lift-up keyboard for swapping out the drive. He’s still waiting for that to come back in style tbh.

Note: This article have been indexed to our site. We do not claim legitimacy, ownership or copyright of any of the content above. To see the article at original source Click Here

Related Posts
Bitcoin Will Stand Down From Now On According To Ethereum Founder: OK But Why? thumbnail

Bitcoin Will Stand Down From Now On According To Ethereum Founder: OK But Why?

Ethereum kurucusu Vitalik Buterin, kripto para dünyası hakkında kendi değerlenmesini yaptığı bir flood serisi yayınladı. Bu seride son 10 yıl boyunca yaptığı açıklamaları değerlendiren Buterin, bundan sonraki süreçte neler yapacağını da açıkladı. Kripto para piyasaları, oldukça hareketli bir yılı geride bıraktı. Gerek Bitcoin gerekse diğer kripto para birimleri, geçtiğimiz bir yıllık süreçte rekor üzerine rekor…
Read More
How to Take Care of Air Plants thumbnail

How to Take Care of Air Plants

Photo: Al Cole (Shutterstock)Despite the classic excuse of not having a “green thumb,” keeping a houseplant alive has more to do with the ability to make and remember to stick to a schedule than being born without a pretend gene that makes you good at gardening. (And if you have a literal green thumb, you…
Read More
New Species of Giant Tyrannosaur Discovered in New Mexico thumbnail

New Species of Giant Tyrannosaur Discovered in New Mexico

The discovery of Tyrannosaurus mcraeensis, a sister species of the famous Tyrannosaurus rex, suggests that tyrannosaurid dinosaurs originated on Laramidia, an island continent that existed between 100 and 66 million years ago and stretched from modern-day Alaska to Mexico. Life reconstruction of Tyrannosaurus mcraeensis. Image credit: Sergey Krasovskiy. “Tyrannosaurid dinosaurs were the dominant predators in
Read More
Index Of News
Total
0
Share