we should all really be happy about this. It points out a flaw made by apple that they can now fix.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Security Firm Reveals iPhone Vulnerability
- Thread starter j/k/Andy
- Start date
- Sort by reaction score
This was bound to happen and shouldn't come as a surprise to anyone - especially not with a complicated device such as the iPhone. Apple has been made aware and they will no doubt address the vulnerability immediately.
I'm sure this is only the first of many security issues as well, but again, as long as Apple addresses them seriously and in a timely manner I don't think iPhone users should be too worried about anything.
I'm sure this is only the first of many security issues as well, but again, as long as Apple addresses them seriously and in a timely manner I don't think iPhone users should be too worried about anything.
Then why can't we run 3rd Party Apps?
If this "virus" is for real, then it could be considered a 3rd party app.
So then it should be possible to run other 3rd Party apps on the iPhone.
Maybe it is good news in disguise.
Personally, I think it is fake.
If this "virus" is for real, then it could be considered a 3rd party app.
So then it should be possible to run other 3rd Party apps on the iPhone.
Maybe it is good news in disguise.
Personally, I think it is fake.
It's not a fake. One of the principal analysts at the company is a friend of mine (he told us about this hack two days ago), not to mention a devoted Apple fan (and fulltime iPhone user).
The hack is definitely real (and it's not really a virus in the sense that it doesn't self-replicate - it's just an exploitable flaw that allows arbitrary code execution). That said, it really doesn't make a significance difference (though Apple should, and undoubtedly will, fix it). Unless you lock your iPhone with a passcode (which would be a major PITA), it's an inherently insecure device and should be treated as such. This hack doesn't give someone substantially more information than they could get by just pick-pocketing your iPhone or finding your lost iPhone. In other words, don't store anything on your iPhone (or any phone) that you feel must stay confidential.
Any limitations Apple puts on 3rd party apps are more likely for *reliability* than security. The iPhone is - like all cell phones - an inherently insecure device.
Ha, no patch needed, here is the solution!
How the exploit works
1. An attacker controlled wireless access point: Because the iPhone learns access points by name (SSID), if a user ever gets near an attacker-controlled access point with the same name (and encryption type) as an access point previously trusted by the user, the iPhone will automatically use the malicious access point.
Unless they set up APs across the world, this is no big issue. The odds are slim too, seeing that it has to be the same SSID and encryption type. Not to mention the range of WiFi.
2. A misconfigured forum website: If a web forum's software is not configured to prevent users from including potentially dangerous data in their posts, an attacker could cause the exploit to run in any iPhone browser that viewed the thread.
Stick with major, trusted forums like macrumors.
3. A link delivered via e-mail or SMS: If an attacker can trick a user into opening a website that the attacker controls, the attacker can easily embed the exploit into the main page of the website.
This can happen to any computer or device that connects to the Internet if you are not careful. Also, we all know not to click on links we are not familiar with or are unsolicited.
How the exploit works
1. An attacker controlled wireless access point: Because the iPhone learns access points by name (SSID), if a user ever gets near an attacker-controlled access point with the same name (and encryption type) as an access point previously trusted by the user, the iPhone will automatically use the malicious access point.
Unless they set up APs across the world, this is no big issue. The odds are slim too, seeing that it has to be the same SSID and encryption type. Not to mention the range of WiFi.
2. A misconfigured forum website: If a web forum's software is not configured to prevent users from including potentially dangerous data in their posts, an attacker could cause the exploit to run in any iPhone browser that viewed the thread.
Stick with major, trusted forums like macrumors.
3. A link delivered via e-mail or SMS: If an attacker can trick a user into opening a website that the attacker controls, the attacker can easily embed the exploit into the main page of the website.
This can happen to any computer or device that connects to the Internet if you are not careful. Also, we all know not to click on links we are not familiar with or are unsolicited.
Will this help the iphone modding community?
Depending on what they mean by arbitrary code, could this be used to open up the iphone to the home brew software crowd?
I'd love to get a native terminal+ssh or IM client on my phone. Then it would let me roam free from my laptop more.
Depending on what they mean by arbitrary code, could this be used to open up the iphone to the home brew software crowd?
I'd love to get a native terminal+ssh or IM client on my phone. Then it would let me roam free from my laptop more.
That's just one way. If you just join an open network, you get the same risks. You're missing the point.
Then how do you explain the author of the Oompa virus targeting this website for distribution?
It's not about "trusted" forums. Security does not rely on "trust" and
"let's go to only certain parts of the internet, because surely they can't be a target" and tinfoil hats. Good lord!
Most viruses spread through infected documents that trusted sources exchange between one another. Viruses don't rifle through your Outlook Address book for the sheer enjoyment of it.
This is like Gruber trying to talk about computer security. It's just a symptom of the thinking of Mac users. None of you ever worry about security problems, you all think it's just something that windows has to worry about. Get a grip on reality here people.
You're missing the point. By your logic, we should only worry about security vulnerabilities after there's already a virus/exploit running rampant through our systems. Hello? Is there anyone home?
EDIT: Apparently not. After writing this little gem, it is beyond me why anyone would seriously listen to anything you have to say.
Link
they could say anything and us die-hard apple fans would go on using our phones
"and years of studies have shown that the iPhone, when used for prolong periods, leads to an acute case of melanoma with common symptoms of explosive diarrhea..."
i love my phone
"and years of studies have shown that the iPhone, when used for prolong periods, leads to an acute case of melanoma with common symptoms of explosive diarrhea..."
i love my phone
Thanks for saving me the trouble of replying to this-- something about the bold blue font seemed to require this kind of response... I might have been a little softer, but that's just me...
It's that trust that can be exploited though. Everyone thinks they're too smart to click on an unsolicited link, but if I got an SMS that appeared to come from my wife telling me to look at a website, I probably would.
Or setting up outside a particularly high-traffic Starbucks (not that Starbucks customers don't have it coming...), or a company of interest.
The only thing I'd add are that security shouldn't rely on trust, but trust adds a layer of security in an insecure world.
It's that trust that can be exploited though. Everyone thinks they're too smart to click on an unsolicited link, but if I got an SMS that appeared to come from my wife telling me to look at a website, I probably would.
This vulnerability is stupid just like the rest that will come after this one. BTW, I'm sure only .0001% of iPhones would be affected anyway.
If the iPhone was not so popular, we would not be having this discussion. They just want to make a name for themselves.
If the iPhone was not so popular, we would not be having this discussion. They just want to make a name for themselves.
Hey, I realize this is 2007 and all but what happened to civility? I am glad you know your stuff and I am sure your suggestions are on target, but your lack of tact and maturity is shameful.
I don't necessarily intend to be the courtesy patrol, but I would hope you realize you can correct someone without resorting to name calling.
Go ahead and flame me if you feel so inclined, but I am sure your responses will br taken that much more seriously when you show you can still respect people even if you are positive they are totally off-base.
It's not like I went out of my way to hide it. It's not like I do some published writings every now and then, or participate on a mailing list where my full name is used. Not going to score any points there my friend.
1) No, it's not 0000.1% of iPhones that will be affected. You have no idea what you're talking about. All iPhones contain the same OS environment. It's called mass production. Get with the program here.
2) Apple doesn't have the luxury of saying "well, if we weren't so popular we'd be better off, not having these pesky security issues. You don't run prime time ad campaigns and then expect everyone to not look into your backyard.
Hey, I'm just trying to drag people kicking and screaming out of the groupthink and out into the world. We need to move beyond the whole "invulnerability" myth and dismiss things that we don't understand.
Yes, I'm nasty, yes I speak my mind, yes I'm sure many don't like it. I hope nobody loses sleep over what I say, because that's not the point.
Yeah, right
Independent Security Evaluators
Gee, wonder who pays their bills. Someone named Bill perhaps?
Never trust any group that tries to tell you that they are independent in the title of the organization.
Who are these jokers, and is this as SERIOUS as the Duke University denial of service attack that the iPhone wa supposedly responsible for, that later turned out to be a Cisco router problem.
And still they attack Apple Inc. All the way up to $300/share and beyond...
Independent Security Evaluators
Gee, wonder who pays their bills. Someone named Bill perhaps?
Never trust any group that tries to tell you that they are independent in the title of the organization.
Who are these jokers, and is this as SERIOUS as the Duke University denial of service attack that the iPhone wa supposedly responsible for, that later turned out to be a Cisco router problem.
And still they attack Apple Inc. All the way up to $300/share and beyond...
Actually, you can. I'm listening to Depeche Mode while replying to your comment...all from my iPhone.
I can certainly understand what he's saying, iPod stops playing ALL THE TIME when I'm browsing, or just using the iPhone for other things. Also, Safari crashes over nothing, the same site will work fine on one load, then cause Safari to crash the next time. Safari needs to be able to handle more sites reliably without crashing. I notice this happens especially frequently if I scroll before a page finishes loading. FSJ's site seems to cause quite a lot of problems.
Jokers
These "jokers" include Charles Miller, a computer science PHD, formerly under the employ of the NSA. Ahem, and you are, who?
These "jokers" include Charles Miller, a computer science PHD, formerly under the employ of the NSA. Ahem, and you are, who?