There’s but a great deal of hub-bub over the latest revelation that non-jailbroken iPhones can be breached with a man in the middle attack (MitM) that comes to iDevices via flaws in Apples DRM system, FairPlay.
Apple’s FairPlay DRM (digital rights management) system insures that only authorized users can get access to purchased content (apps, music, movies, etc.) through a given AppleID. However, this MitM attack allows hackers to install malware on iOS devices without a user’s knowledge or consent, bypassing Apple security measures.
According to PaloAlto Networks,“In the FairPlay MITM attack, attackers purchase an app from App Store then intercept and save the authorization code. They then developed PC software that simulates the iTunes client behaviors, and tricks iOS devices to believe the app was purchased by the victim.”