Many iPhone and iPad users have resorted to jailbreaking their devices to install apps that have not been approved by the official Apple App Store. The latest jailbreaking method involves connecting the device to a computer and opening up a website to begin the process. The website then exploits a vulnerability in the way that the mobile edition of Safari (the default browser used in the iOS operating system) handles PDF files.
As Apple has yet to patch this vulnerability, users will be at risk if cybercriminals choose to exploit this loophole to install malicious code.
Because Apple has not yet patched this latest vulnerability, iPad and iPhone users could be at risk from hackers if they chose to exploit the same vulnerability to install malicious code.
In a press release from Sophos, Graham Cluley, a senior technology consultant, said:
"Cybercriminals would be able to create booby-trapped webpages that could - if visited by an unsuspecting iPhone, iPod Touch or iPad owner - run code on visiting devices without the user's permission."
For more, read here.