Sophos warns of iOS 4.3 security problems

Online security expert Sophos has welcomed the arrival of the more secure iOS 4.3, but criticised Apple for excluding older iPhone and iPod touch models, accusing the tech giant of leaving fanboys "exposed to security holes".

"If you have an earlier iPhone or iPod touch, your device is potentially vulnerable to attacks which could exploit these known security holes, and there is no official patch available for you to protect yourself," said Graham Cluley, senior technology consultant at Sophos. 

"That's bad news for the very many people who still have an iPhone 3G, for instance. If you were looking for an excuse to upgrade your iPhone or iPod touch - maybe you've just been given a good one by Apple. 

"But if you were happy with your iPhone 3G, I doubt you're feeling too good about having to reach into your pocket."

Sophos did praise Apple for making newer devices more secure with iOS 4.3, mentioning a number of patches that make a hacker attack less likely. Security fixes with the latest iOS platform includes protection against maliciously-crafted TIFF image files, and multiple memory corruption issues within WebKit.

So basically, what Sophos is saying is you're buggered unless you've got a newer iDevice. However, you're no more in danger than you were before iOS 4.3 landed, so no need to panic too much.

iOS 4.3 - all the details from the developer drop



>