Apple slips in another iOS update with a big security fix

by: Dan -
More On: iOS

After all the issues with the security flaw that highlighted the iOS 7.03 update, Apple slipped a quick update (iOS 7.04) through the five-hole this weekend to fix some bug issues and problems with FaceTime. However, the more interesting piece of this is the security patch for AppStore infrastructure. The security update mentions that it closes an issue where App and AppStore transactions may take place without full authorization. In other words, there were some instances where it was automatically charging accounts without having to sign in with your password. So next time you make a purchase, it looks like Apple added some additional purchase authorization layers, although they do not say what those are.

iOS 7.0.4
Bug fixes and improvements, including a fix for an issue that causes FaceTime calls to fail for some users.

iOS 7.0.4 Security Update
App Store

Available for: iPhone 4 and later, iPod touch (5th generation) and later, iPad 2 and later

Impact: App and In-App purchases may be completed with insufficient authorization

Description: A signed-in user may be able to complete a transaction without providing a password when prompted. This issue was addressed by additional enforcement of purchase authorization.