http://www.forbes.com/sites/andygre...curity-bug-lets-innocent-looking-apps-go-bad/
This is NOT good... let's hope Apple releases a fix soon.
This is NOT good... let's hope Apple releases a fix soon.
Nothing to really worry about.
I imagine they are already working on it seen as though they have seen the video, Removed the app and remove him as a developer.
except that this could be used to steal your data and then wipe your phone.
except that this could be used to steal your data and then wipe your phone.
----------
Removing the app makes sense. Removing him as a developer not so much.
He is a security researcher who is basically helping apple and giving them time to fix it before he exposes it next week. Expect them to include a fix in 5.0.1
before it is released.
except that this could be used to steal your data and then wipe your phone.
----------
Removing the app makes sense. Removing him as a developer not so much.
He is a security researcher who is basically helping apple and giving them time to fix it before he exposes it next week. Expect them to include a fix in 5.0.1
before it is released.
This. You can't just say "Oh, I'm a researcher" and submit malware to the app store. It shows really poor judgement. Of course, they did hire they guy from the jailbreaking community. But the big difference is that he had no prior agreements with Apple which he broke, and he wasn't actually doing anything illegal. I don't know what Miller was expecting, losing his developer license was inevitable. It's kind of sad, no doubt he's a smart guy ...in the ways of programming.Maybe but his developer account was a standard account and not a researcher account. He also actively exploited a security flaw.
Beyond discovering the bug, Miller went a step further and actually had an App submitted to the App Store which took advantage of this bug. The App was approved and was able to perform as expected:Miller became suspicious of a possible flaw in the code signing of Apple's mobile devices with the release of iOS 4.3 early last year.
...
The researcher soon dug up a bug that allowed him to expand that code-running exception to any application he'd like.
Shortly after the news broke, Apple revoked Miller's developer account, citing a breach of the developer agreement.Using his method-and Miller has already planted a sleeper app in Apple's App Store to demonstrate the trick-an app can phone home to a remote computer that downloads new unapproved commands onto the device and executes them at will, including stealing the user's photos, reading contacts, making the phone vibrate or play sounds, or otherwise repurposing normal iOS app functions for malicious ends.
Miller plans to present his findings at the SysCan conference in Taiwan next week."This letter serves as notice of termination of the iOS Developer Program License Agreement...between you and Apple," the email read. "Effective immediately."
Meanwhile Google is handing out bounties for stuff like this. Because why would you want to get (almost) free help from industry-leading professionals? Submitting it to the App Store probably wasn't the way to go, though.
Wirelessly posted (Mozilla/5.0 (iPhone; U; CPU iPhone OS 4_2_1 like Mac OS X; en-gb) AppleWebKit/533.17.9 (KHTML, like Gecko) Version/5.0.2 Mobile/8C148 Safari/6533.18.5)
I guess he should have told apple about it instead of submitting that app
This makes Apple look pretty bad. And if he had submitted the bug what are the chances Apple would have responded in a timely manner if at all?
This makes Apple look pretty bad. And if he had submitted the bug what are the chances Apple would have responded in a timely manner if at all?
Apple should offer him a job.