Update your iPad & iphone!

iPhone And iPad Users Hit By Security Glitch


Users are told to update their devices to fix a bug that could let criminals obtain personal data over secure connections.

Millions of iPhone, iPad and iPod users have been told to download a crucial security update after a major flaw left them vulnerable to cyber criminals.

The update to Apple's iOS 7 mobile operating system fixes a glitch that allowed "an attacker" to "capture or modify data" during supposedly secure transactions.

Matthew Green, a professor in cryptography at Johns Hopkins University, said: "It's as bad as you could imagine, that's all I can say."

A security patch for the bug, known as Goto Fail, on MacBooks and iMacs running OS X has not yet been released.

Apple has admitted the flaw relates to the way data is passed between internet browsers and websites that use digital security certificates, such as banking sites and online retailers.

These websites - identified by the padlock icon shown in the address bar - should be able to send encrypted information securely.

However, "missing validation steps" meant security certificates were not checked properly, meaning hackers could impersonate websites to gain personal data.

The flaw is thought to be linked to a single line of code in Apple's operating systems.

Google engineer Adam Langley said he believed the glitch was "just a mistake", but added: "This sort of subtle bug deep in the code is a nightmare."

Paul Ducklin, a security expert at internet security firm Sophos, said Mac users should avoid using Apple's Safari internet browser and switch to alternatives such as Firefox or Chrome until the problem is fully fixed.

They should also avoid insecure Wi-Fi networks, he added.