Researchers have discovered a method that can be used to install malware on iOS devices by abusing the mobile device management (MDM) solutions used by many enterprises.
Security firm Check Point has classified the issue as a vulnerability, which it has dubbed “SideStepper.” While experts believe this is a “possible security flaw” in the iOS 9 operating system, Apple sees it as expected behavior.
Apple allows users to install applications on non-jailbroken iPhones and iPads only from the official App Store, where all apps are verified by the company before being made available for download. In order to allow enterprises to distribute internally-used apps without having to go through the verification process, Apple has created a Developer Enterprise Program.
