iPhone Wi-Fi Bug Now Morphs Into Zero-Click Hacking

Security researchers investigating a bug that causes Wi-Fi services on iPhones to crash have discovered that it could be exploited for remote code execution without user interaction.

While security researcher Carl Schou first discovered a vulnerability that caused iPhone devices to lose their Wi-Fi connectivity after joining a network with the SSID “%p%s%s%s%s%n,” researchers at mobile security startup ZecOps explained that there is more to the bug than the reported Wi-Fi denial-of-service (DoS) effect.

The researchers found that the error can be triggered by a zero-click.

ZecOps says the problem is similar to a format-strings bug where the computer considers the input value as a formatting character rather than a character. This attack was dubbed as WiFiDemon.

However, the researchers recommended upgrading the phone to the latest OS version, as well as disabling the auto-join feature in the Wi-Fi settings to protect against WiFiDemon attacks.

Apple’s iOS 14.7 security updates are intended to address the reported issues.

For more information, read the original story in Bleeping Computer.

iPhone Wi-Fi Bug Now Morphs Into Zero-Click Hacking

Top Stories

Nvidia shares dip amid questions over OpenAI investment

Ontario backs large-scale nuclear expansion at Wesleyville

Malicious Chrome extension targets Meta business accounts

Bitcoin meltdown wipes out Trump-era gains

Taiwan rejects U.S. push to relocate chipmaking production

OpenAI and Anthropic go head-to-head with same-day AI model launches

Related Articles

New ghost tapping fraud targets contactless payments

Malicious Chrome extension targets Meta business accounts

Researcher uncovers large-scale malware campaign hidden in AI bot marketplace

Millions of Fortinet devices exposed in active authentication-bypass attacks

TND News Desk

TND News Desk

Jim Love

Follow Us

Popular categories

Tech News Delivered