iOS Trustjacking – A Dangerous New iOS Vulnerability
An iPhone user's worst nightmare is to have someone gain persistent control over his/her device, including the ability to record and control all activity without even needing to be in the same room. In this blog post, we present a new vulnerability called “Trustjacking”, which allows an attacker to do exactly that.
This vulnerability exploits an iOS feature called iTunes Wi-Fi sync, which allows a user to manage their iOS device without physically connecting it to their computer. A single tap by the iOS device owner when the two are connected to the same network allows an attacker to gain permanent control over the device.
Read the full vulnerability description at Symantec blog
And contact us here at Mobisec for more info on how to defend your organization from mobile threats: firstname.lastname@example.org