Apple’s iOS platform is typically thought to be quite secure, although when security issues are found, they’re usually brought to our attention very quickly. David Vieira-Kurz of MajorSecurity recently uncovered a very troubling security issue in Mobile Safari on iOS 5.1 that could put your information at risk:
From MajorSecurity (via TheNextWeb)
Today, a new vulnerability has been brought to our attention that focuses on how the Safari browser on iOS 5.1 renders website addresses, which can be used to display a different URL to that of the actual website you are visiting. […] This could potentially be used to “trick users into supplying sensitive information to a malicious web site.
This could allow fraudulent websites to easily trick you into giving up personal information, such as credit card information or passwords, by allowing them to more easily trick you into thinking you are at a legitimate website.
The bug can easily be demonstrating by viewing this link on any device running iOS 5.1. The link brings you to fake website, but Apple.com appears in the address bar as the site’s URL. Needless to say, it’s a significant issue that Apple needs to address sooner rather than later.