Darwin Nuke vulnerability hits Apple devices running on iOS 8 and OS X 10.10

The apple devices owners, be conscious: A vulnerability has been exposed in the core of Darwin, an open-source element of equally the iOS and OS X operating systems.

Kaspersky is naming it the “Darwin Nuke” and that foliage iOS 8 and OS X 10. 10 devices subjected to remotely-motivated of DoS attacks. DoS attacks can harm a user’s device (iPad Air, iPhone 5s, and iPad mini 2) as well as impact any shared network which it is linked.

The update comes hard on the heels of an additional serious fault, called “Phantom” by FireEye experts.

Anton Lvanov (senior analyst at Kaspersky Lab) said, “Routers and firewalls would usually drop incorrect packets with invalid option sizes, but we discovered several combinations of incorrect IP options that are able to pass through the Internet routers. We’d like to warn all OS X 10.10 and iOS 8 users to update devices to OS X 10.10.3 and iOS 8.3 releases.”

Firewalls and routers would normally drop improper packets with void option sizes, however numerous combination of invalid IP options were discovered by the company’s experts that are capable to go through the online routers.

Anton Ivanov also stated that, “At first sight, it is very hard to exploit this bug, as the conditions attackers need to meet are not trivial ones. But persistent cybercriminals can do so, breaking down devices or even affecting the activity of corporate networks.”

To enhance the security of Mac products, make use of a web browser that has a good history of avoiding malware, viruses and all of the security concerns efficiently, patch your Mac machine as possible as you can if updates are available, for avoiding the phishing attacks use a password manager, setup an excellent security solution – advice by Kaspersky Lab to Mac users.

A security researcher Craig Young said, “A continued scan of telco networks using a tool like Rob Graham’s masscan could create a persistent denial-of-service condition on unpatched devices. And, with the details described by Kaspersky in the report, it’s trivial for an attacker to start exploiting this flaw immediately on iOS 8 and OS X 10.10.”

Furthermore he added, “When on Wi-Fi, the attack surface is slightly diminished for iOS since most Wi-Fi networks are behind a firewall device. But, an attacker already on a corporate or home network could potentially use this attack to cause iPhones, iPads, and Macs on the network to reboot. iOS users should upgrade immediately.”

Top/Featured Image: By Blake Patterson (Flickr: the iOS family pile (2012)) [CC BY 2.0], via Wikimedia Commons

Ali Raza Ali is a freelance journalist, having 5 years of experience in web journalism and marketing. He contributes to various online publications. With a Master degree, now he combines his passions for writing about internet security and technology for SecurityGladiators. When he is not working, he loves traveling and playing games.
Leave a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.