From iPhone to SpyPhone
Rumor has is that Steve Jobs pulled software engineers that were working on Leopard so that they can finish the iPhone software and rush it out the door. Well, those engineers actually made a big no-no buy having each application run as root. The guys over at FastCompany bought an iPhone and commissioned a renowned UNIX specialist to crack through the iPhone defenses and what he was able to accomplish is actually quite amazing.
The result is this video, in which Farrow was able to take complete control of an iPhone and demonstrate the ability to eavesdrop on conversations, intercept voice mail and e-mail, and upload nefarious software programs. “Physical access to an iPhone,” Farrow points out, “is not required.” Although in Farrow’s demo the Wi-Fi was turned on — common enough for iPhone users, since AT&T’s EDGE network makes Web surfing slow and laborious — Moore says his exploit can work on EDGE, too.
There are several ways of deploying this exploit, via a text-message with a link to the malicious code, an email with an attachment, or via an infected Wi-Fi access point. After the infection takes over, the attacker has absolute control over the iPhone, which means, he/she could eavesdrop on conversations, have full access to emails/text messages or install other malicious apps…the possibilities are endless.
The good news is that, according to tech consultants, there is no money in the business of cracking iPhones, as opposed to using PCs to serve adds and spam. Also, Apple has since fixed this security hole in the iPhone’s latest firmware, but that doesn’t guarantee that other exploits won’t be found. So, next time you unplug your iPhone from the charger, remember, its dangerous out there…even for the “Jesus Phone”.
Read [FastCompany] Via [TechCrunch]
Written by Joe Melo for Gadgetell, 2007. |
Permalink |
6 comments
Filed under Wireless, Apple, Cellphones, Communications, Email / IM, Cellular Providers.
Categories: Gizmos and Gadgets reviews
Tags:
