Apple iOS 10 and 10.0.1 Released - SANS Internet Storm Center

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Handler on Duty: Johannes Ullrich

Threat Level: green

Apple iOS 10 and 10.0.1 Released
On top of today being Patch Tuesday, Apple has released IOS 10 sometime today as well. They also released 10.0.1, with not a lot of detail behind that release (maybe something was missed?) Security details for 10.0 : https://support.apple.com/en-ca/HT207143 Security details for 10.0.1: https://support.apple.com/en-ca/HT207145 (an almost empty page) Highlights are: MiTM attacks on Apple Updates Autocorrect pulling sensitive data from cache (again) Issues with Certificate Trust in Mail app allows MiTM Airprint Temp file sanitization SMS directory exposed to malicious apps None of these Apple or Microsoft updates are what you'd call "small" - let's hope we don't break the internet today (just kidding, I think). Happy Patching everyone! =============== Rob VandenBrink Compugen	Rob VandenBrink 582 Posts ISC Handler Sep 13th 2016
Thread locked Subscribe	Sep 13th 2016 6 years ago
It looks like the initial release bricked some devices. Read more here: Apple’s iOS 10 Download Was Bricking iPhones. It’s Fixed Now - https://www.wired.com/2016/09/ios-10-bricks-iphones/	Anonymous
Quote	Sep 14th 2016 6 years ago