The vulnerability allowed a pop-up screen which accused the phone owner of accessing illegal sites, and could not be removed unless £100 was paid by an iTunes gift card.
However the ransomware was fake. Just clearing your phones browser cache would be enough to remove the pop-up screen. Read full article…
Apples iOS 10.3 update address the flaw in Safari used by the scammers.