'[ISN] =?iso-8859-7?q?Evil_Wi-Fi_captive_portal_could_spoof_Apple_?= =?iso-8859-7?q?Pay_to_get_users='

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       isn
Subject:    [ISN] =?iso-8859-7?q?Evil_Wi-Fi_captive_portal_could_spoof_Apple_?= =?iso-8859-7?q?Pay_to_get_users=
From:       InfoSec News <alerts () infosecnews ! org>
Date:       2015-06-05 8:50:14
Message-ID: alpine.DEB.2.02.1506050850010.24503 () infosecnews ! org
[Download RAW message or body]

http://arstechnica.com/security/2015/06/evil-wifi-captive-portal-could-fool-users-into-giving-up-apple-pay-data/


By Sean Gallagher
Ars Technica
June 4, 2015

Researchers at Wandera, a mobile security company, have alerted Apple to a 
potential security vulnerability in iOS that could be used by attackers to 
fool users into giving up their credit card data and personal information. 
The vulnerability, based on the default behavior of iOS devices with Wi-Fi 
turned on, could be used to inject a fake "captive portal" page that 
imitates the Apple Pay interface.

The attack leverages a well-known issue Ars has reported on in the past: 
iOS devices with Wi-Fi turned on will attempt by default to connect to any 
access point with a known SSID. Those SSIDs are broadcast by "probe" 
messages from the device whenever it's not connected to a network. A rogue 
access point could use a probe request capture to masquerade as a known 
network, and then throw up a pop-up screen masquerading as any web page or 
app.

The Wandera attack uses this behavior to get a mobile device to connect 
and then presents a pop-up portal page—the type usually used when 
connecting to a public WiFi service to present a Web-based login 
screen—that is designed to resemble an Apple Pay screen for entering 
credit card data. The attack could be launched by someone nearby a 
customer who has just completed or is conducting an Apple Pay transaction 
so that the user is fooled into believing Apple Pay itself is requesting 
that credit card data is reentered. An attacker could loiter near a 
point-of-sale system with an Apple Pay terminal and continuously launch 
the attack.

[...]



--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic