Security Updates
iOS Update
On 21st Feb 2014, Apple published an incremental update to iOS, v7.0.6, to address a critical
flaw in data security.
An attacker with a privileged network position may capture or modify data in sessions
protected by SSL / TLS. This was patched in v7.0.6 which is now available.
The vulnerability is on all version of iOS 6.x & iOS 7.x. Apple has released the fix in iOS 7.0.6
and iOS 6.1.6. So any iOS user running below version 7.0.6 or 6.1.6 needs to upgrade the OS
immediately to fix this vulnerability.
Customers are also encouraged to use the latest versions of iOS available, which may provide
advanced security features such as anti-phishing and forged website identification.
Zeus Malware
The Malaysian Computer Emergency Response Team (MyCERT) published an alert on Zeus,
an emerging malware targeting Malaysian internet banking users.
Affecting most smartphones and older Windows Operating Systems, Zeus infects users
primarily through compromised websites or malicious smartphone apps. Once infected, users
who attempt to use local banking sites are instead directed to imitation sites that attempt to
trick users into disclosing login details as well as other personal information.
Related Links
For
more
information,
visit
BNM
Financial
at http://www.bnm.gov.my/microsites/fraudalert/index.htm.
Fraud
Alert
https://www.mycert.org.my/en/services/advisories/mycert/2014/main/index.html
website