Apple's iPhone PDF Exploit. Scared? (Exploited already by Jailbreak)

[oakfan52]

What if someone hacked yahoo.com and made it the home page.

Oh you don't go to yahoo.com.

You are 1337.

Yahoo ? seriously the 12 people who use yahoo would be affected.

 

[Block]

I Don't open files from unknown places and people i don't know period.

 

[Syk]

I agree with not opening strange files from people would be your best bet but the redirect would be an issue for some I guess.

I don't really use my iphone and Safari to surf the web, I may go to main sites, like cnn,fox, abc, macrumors and other forums so for the PDF injection to happen a pretty popular site will have to be hacked and redirected.Very unlikely

I may however load the patch in Cydia as a safe guard.

 

[TruckdriverSean]

Wirelessly posted (Mozilla/5.0 (iPhone; U; CPU iPhone OS 4_0_1 like Mac OS X; en-us) AppleWebKit/532.9 (KHTML, like Gecko) Version/4.0.5 Mobile/8A306 Safari/6531.22.7)

@alent1234
@Cynikal.Mindset
@kas23

Thanks for the info.

Now, I'm going to go find a quiet spot to lie down and some cool water.
(my brain now hurts)

 

[Moof1904]

I'm not really scared because only an idiot would open a PDF or any file for that matter that was foreign to them. Some people need to exercise common sense.

This sort of blanket response isn't feasible for some people. I have a family member who is a recruiter, for example, and receives countless resumes in response to employment ads, most of them in PDF format. To expect that she first knows a person before opening a PDF simply isn't practical. I'm sure there are other similar examples where people must be able to trust that they're safe opening PDFs from somewhat unknown sources.

This is a big problem and avoiding PDFs isn't an effective solution for many.

 

[TurdFerguson]

You know people can do much worst with just your AIM sn.

You have to accept their request to direct connect for them to be able to 'do much worse'

 

[JediZenMaster]

This sort of blanket response isn't feasible for some people. I have a family member who is a recruiter, for example, and receives countless resumes in response to employment ads, most of them in PDF format. To expect that she first knows a person before opening a PDF simply isn't practical. I'm sure there are other similar examples where people must be able to trust that they're safe opening PDFs from somewhat unknown sources.

This is a big problem and avoiding PDFs isn't an effective solution for many.

That i understand because she's a recruiter. But i'm talking about the mainstream consumer who isn't a recruiter and just opens something to open it.

 

[JediZenMaster]

You know people can do much worst with just your AIM sn.

Well i wouldn't know i haven't used AIM or any other instant messaging app for years. I mainly use twitter and facebook and i don't have any information worth stealing on facebook.

 

[Block]

You have to accept their request to direct connect for them to be able to 'do much worse'

Edit: It doesn't work anymore never mind

 

[Mike225]

Whos used the exploit to jailbreak and "patch"?