techkenyot.com
techkenyot.com October 18, 2017


IOS Phishing Attack Masks Itself As Apple-Style Password Request

11 October 2017, 07:31 | Casey Mitchell

iOS Apps Become a Hotbed of Phishing Attacks Thanks to Apple's Constant Password Popups

Fake iOS Password Prompt

Felix Krause has shown of a proof of concept that could be used to steal peoples login information.

"Showing a dialog that looks just like a system popup is super easy, there is no magic or secret code involved, it's literally the examples provided in the Apple docs, with a custom text".

iOS asks users for their passwords for many reasons, but the most common ones are recently installed iOS operating system updates or iOS apps that are stuck during installation. Users, however, are really left with little recourse than a few tricks, like pressing the home button to see if the popoup is an official system one, in which case it will remain on screen, or a phishing attempt, in which case it should disappear.

Man Utd Star Offers Positive Update As He Steps-Up Injury Comeback
Pogba and Fellaini will miss United's match against fierce rivals Liverpool at Anfield on Saturday, while Michael Carrick is also a doubt.

"Users are trained to just enter their Apple ID password whenever iOS prompts you to do so".

Developer Felix Krause, who brought the public's attention to this rather simple but very risky situation, makes a few suggestions for Apple to rectify the matter.

Even if you have two-factor authentication (2FA), what's to stop an app developer from asking for your 2FA key as well?

Court orders IEBC to include Ekuru Aukot in repeat poll
Dr Kaluyu, on the other hand, is a US-based scholar who argued that he was bringing the "global outlook" to the Kenyan politics. Judge says he sees no reason why Aukot should not be included in the repeat presidential election.

According to the reports, the update will bring back the 3D Touch app switch gesture.

Apps frequently ask for a person's password to access iCloud, in-app purchases, and GameCenter. This could easily be abused by any app'. Apparently, they may be used to steal your Apple ID password. Finally, only enter your password on the iPhone or iPad in Apple's own apps, whenever they require you to do so.

If you use your Apple ID password elsewhere, like your online banking service, cyber criminals could use it to crack your accounts. He says he's already filed this issue as a radar with Apple and explains that it could be fixed by Apple not allowing passwords to be entered in popups, but rather only in the Settings app/App Store. If the application and its fake pop-up closes, it was a phishing attack.

Turkey urges USA to end visa suspension, summons envoy
The United States lambasted the Turkish government for the "wrongful arrest" arrest of Brunson and has been vying for his release. The Hurriyet daily reported the individual wanted by prosecutors is now taking sanctuary inside the Istanbul US consulate.



Other News

Trending Now

BlackRock earnings: $5.92 per share, vs $5.56 EPS expected
The continued demand for ETFs and positive sentiment in the global financial markets helped to boost total AUM by 5% to US$5.98trn.

Taylor Twellman's Rant About US Soccer Was Perfect
The discussion after Brazil was, 'Can we beat the Colombias and the Belgiums and the Argentinas of the world. After the match, veteran soccer writer Grant Wahl summed up the enormity of the disaster best.

Sophiris Bio, Inc. (SPHS)
As analysts monitor volatile markets in recent weeks they have updated their price targets on shares of Bio-Rad Laboratories, Inc. It improved, as 5 investors sold TCPC shares while 19 reduced holdings. 1St Glob Inc has invested 0.02% in Vonage Holdings Corp.

Intel's Big Step towards Quantum Computing with New 17-qubit Chip
The project spans qubit devices, the hardware and software architecture required to control them, as well as quantum applications. However, building large-scale, accurate quantum computers is a challenge; one of which is producing heterogenous, stable qubits.

Spacewalkers float out to lubricate robotic arm
Rob Navias, the NASA spokesman, described the latest installation of HD camera as providing "new eyes" to the space station . Astronauts need it in working order so it can capture incoming cargo ships that ferry supplies to the crew living in orbit.

Nehra to retire after Delhi T20I
The report also added that Nehra would not be a part of the next season of the Indian Premier League. Veteran Indian paceman Ashish Nehra has chose to retire from worldwide cricket.

How to Watch Honduras vs. Mexico
Hirving Lozano will be absent for Mexico, and he stayed with his club for these final qualifiers. If Honduras want to have a shot at Russian Federation , they'll need to step up their defense.

Eog Resources Incorporated (NYSE:EOG) Just Reported Decreased Shorts
Looking at some alternate time periods, the 12 month price index is 0.99558, the 24 month is 1.12052, and the 36 month is 1.09318. This article is informational purposes only and should not be considered a recommendation to buy or sell the stock.

Aamir Khan : I don't get affected by various trends in Bollwood!
Cheif of Strategy of PVR Ltd, Kamal Gianchandani says that the PVR card aims to delight, create and retain the loyal customers. But I always like to follow my gut feeling, ' Aamir said.

Qatar accuses neighbours of 'petty jealousy' over 2022 World Cup
Khalfan's comments have come under massive attack for their sheer and overt threat to Qatar hosting the ambitious sport event. Kuwaiti and U.S. attempts to ease the row have yielded little progress.