Apple Releases iOS 15.2.1 to Fix Severe DDoS HomeKit Vulnerability

Apple released iOS , its latest software update for recent iPhone and iPad devices. The patch fixes a vulnerability found in the company’s HomeKit protocol for connecting disparate smart home devices. The bug allowed malicious individuals to force an iPhone or iPad to hang and hang repeatedly by changing the name of a HomeKit-enabled device to more than 500,000 characters. Since iOS backs up HomeKit device names to iCloud, it was possible for iOS users to get stuck in an endless loop of crashes.

Security researcher discovered the vulnerability and made it public on January 1. According to Spiniolas, he informed Apple of the bug in August. The company reportedly planned to patch the vulnerability before the end of 2022, but then postponed a patch until early 2022. “I think this bug is being handled inappropriately as it poses a serious risk to users and many months will go by. have passed without a full fix, “Spiniolas said at the time.

Spiniolas discovered that the vulnerability has been present in Apple’s mobile operating system since iOS 14.7, but said he believes it exists in all versions of iOS 14. In other words, if you delayed installing iOS 15, now is the time to update your Apple devices.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through any of these links, we may earn an affiliate commission.

Related Articles

Leave a Reply

Your email address will not be published. Required fields are marked *

eighteen + 15 =