Apple seems to have fixed this issue in the iOS 8.1.3.
Now, FireEye researchers have discovered a new but which can be doubly dangerous than Masque.
We will give a shot to understand this in simple terms.
Fire Eye has brought this issue to the notice of Apple.
According to FireEyes article: An attacker can leverage this issue to launch an app containing a Masque Attack.
stealing the get in credentials.
Apple iOS cannot protect its users against this because the attack would be at the prompt level.
2)URL Scheme Hijacking:This is more of a feature issue than the malware attack.
It was seen that Apple iOS allows apps from different developers to share the same URL schemes.
you’re able to see the Proof-of-Concept video below :
Read More
source: www.techworm.net
