Join us at TNW Conference 2022 for insights into the future of tech →

The heart of tech

This article was published on September 17, 2015

iOS 9 and OS X El Capitan reportedly fix AirDrop security issue

iOS 9 and OS X El Capitan reportedly fix AirDrop security issue
Nate Swanner
Story by

Nate Swanner

Former Reporter, TNW

TNW's former West Coast writer in the PNW (Portland, Oregon). Nate loves amplifying developers, and codes in Swift when he's not writing. If TNW's former West Coast writer in the PNW (Portland, Oregon). Nate loves amplifying developers, and codes in Swift when he's not writing. If you need to get in touch, Twitter is your best bet.

AirDrop, Apple’s method for wirelessly transmitting data quickly, has a serious bug according to one security researcher. Happily, the issue is easily resolved by updating to iOS 9.

The issue is also patched in the forthcoming OS X El Capitan.

The problem relates to security certificates, according to Mark Dowd of Azimuth Security; when a business wants to deploy apps outside of the App Store, they ‘sign’ that software with an enterprise certificate so your device knows it’s on the up-and-up.

Currently, nefarious folks can reportedly trick your device into accepting a fake certificate, even if you never open an AirDropped file.

Once a file has been sent, the sender has access you likely don’t want them to have. Receiving the file to a device provides knowledgeable hackers access down to the root level.

Dowd says the issue is resolved in iOS 9 and OS X El Capitan, so it’ll be natively solved across the board by the end of the month (El Capitan launches September 30). We’d previously heard similar security fixes were in store for AirPlay.

For now, it’s a good idea to restrict AirDrop to contacts only (or turn it off), and update to iOS 9 as soon as possible.

One Great Reason To Update To iOS 9 – A Nasty Silent AirDrop Attack Is In Town [Forbes]

Also tagged with