Basically, by generating a specially crafted SSL certificate, attackers can regenerate a bug and cause apps that perform SSL communication to crash at will. With our finding, we rushed to create a script that exploits the bug over a network interface. As SSL is a security best practice and is utilized in almost all apps in the Apple app store, the attack surface is very wide.
via “No iOS Zone” – A New Vulnerability Allows DoS Attacks on iOS Devices ».
This exploit only crashes a device making it unusable. There is no mention of making end to end encrypted communications vulnerable. By moving outside the range of the access point the IOS device automatically connected to should break the connection bringing the phone back to normal.
Devices with wifi left on will try and connect themselves to any open access point. While this shouldn’t be a problem attacks like this can happen. I would classify this attack more of an irritant than anything serious.
Apple issues developer certificates to those who want to do internal distributions of their own applications. Those certificates can be used to self-sign an application and provision it.
Wang’s team found they could sneak a developer provisioning file onto an iOS device when it was connected via USB to a computer. A victim doesn’t see a warning.
That would allow for a self-signed malicious application to be installed. Legitimate applications could also be removed and substituted for look-alike malicious ones.
via The biggest iPhone security risk could be connecting one to a computer – Computerworld.
An untethered jailbreak means users can install it on their device once and for all. They don’t have to worry about a dead battery or restart requiring them to hook up to a computer and jailbreak the device again.
via Untethered iOS 6.1 evasi0n jailbreak arrives for iPhone, iPad, and iPod touch devices – The Next Web.
If you ever need to do this this article would be a good place to start your journey.
Document management on iOS is a mess. Every application implements its own scheme. They all work differently. Some allow you do open documents in other applications that support a matching file format. Others don’t. Some support Dropbox, or other services. Others don’t. Some allow you to organize your documents hierarchically or spatially, others don’t.
In webOS, you can set up different system-wide accounts.
via ignore the code: Please Steal These webOS Features.