An SSL bug has recently been found that has plagued both the iOS and OSX. The bug could potentially give someone access to your confidential information when accessing websites such as your financial institution when browsing on a public network or shared network. For those who doesn't know about SSL, it is the initials for Secure Socket Layer, a layer of security that encrypts your data or document when transmitting over the network so malicious users who want to steal your confidential information won't see your transmitted data in plain text. Try to login to your financial institutions' website and you will notice that the URL starts in HTTPS and not HTTP. The additional "S" on the url means that your communication with the website is encrypted using SSL. The bug in iOS and OSX bypasses the verification of the encryption key. So, if you have been checking your banking site and you were on public network and for some unlikely situation that there was a malicious user around the area while you were browsing, there is a possibility that the malicious user was able to capture your information plainly. You can check if your iPhone or Mac computer is vulnerable to this bug. Visit
gotofail to check if your device is safe or vulnerable.
This is how it looks like if your device is not updated or patched:
And this is how it should look like after successfully updating your device:
Please update your devices as soon as possible! Hope this helps!!!! Thanks! :)
It is always good to listen to your wife, my wife pointed out something important that I missed. Third-party browsers are not affected, like Firefox and Chrome, this bug applies to Apple's proprietary browser, Safari. And Apple is currently working on a patch to OSX, iOS patch is available.
Resources:
CNET - Protect your MAC
iPhone security bug
