Cybersecurity Alert: Apple's iOS 10.3.3 Update Fixes Critical Wi-Fi Vulnerability

July 20, 2017

Threat Summary

A critical wi-fi vulnerability called Broadpwn allows hackers to run code in the main application processor and gain complete access to any Apple device within range.

The vulnerability, discovered by Nitay Artenstein from Exodus Intelligence, was patched by Apple in iOS 10.3.3 released on July 19. The vulnerability is a result of a weakness in the Broadcom BCM43xx family of Wi-Fi chips, which allows attackers to take control of the Wi-Fi chip leading to the main processor.

For more information, see: https://support.apple.com/en-us/HT207923

ACA Aponix Guidance

We advise you to install iOS 10.3.3 now as well as install all iOS updates as soon as they are released.

If you have any questions, please contact your ACA Aponix consultant or email us at info@acaaponix.com.