Apple has recently issued a new update for iPad and iPhone, but it appears that MacBook remains vulnerable to the attack. The update for iOS operating system patches a vulnerability that prevents hackers from monitoring communications that are usually encrypted. When we access to a secure website or go to a bank’s official website, the bank information and password are typically encoded in a specific way to prevent unauthorized individuals from eavesdropping the data transfer.
The bug is related to how the Mac OS X interacts with Secure Sockets Layer (SSL), which encrypts critical data between servers and computers. As Apple’s laptops are still not yet protected, hackers could pose as bank, email provider or other parties to get their hands on critical information. Attackers who gain privileged position in the network may capture the data and modify it accordingly, although SSL/TLS protects the sessions. Intrusions involving “men in the middle” are not a new thing and these people are simply sitting between senders and receivers.
The iOS 7.0.6 update for iPad and iPhone already includes fix for the flaw, but the current Mac OS X 10.9.1 is still unpatched, leaving users unprotected to attacks. There’s still no statement from Apple whether Apple will release the necessary patch. However, we could guess that internally, the company is already scrambling to roll the update put as fast as it can.