Skip to Content

Free TUAW iPhone app -- try it now!
AOL Tech

blackhat posts

Filed under: Security, iPhone

Security researchers to unveil iPhone SMS vulnerability later today

by Joachim Bean (RSS feed) on Jul 30th, 2009

Two security researchers, Charlie Miller and Collin Mulliner, have discovered a serious security vulnerability affecting SMS messaging on the iPhone that will be unveiled later today at the Black Hat security conference in Las Vegas. This flaw affects all iPhones and can allow an attacker to gain complete control of an iPhone, including the ability to make calls, browse the web and access the camera. This exploit is caused by corruption in the iPhone's memory handling and is executed by sending a burst of text messages by using a uncommon text character or by sending a hidden message.

So far, Apple has been rumored to have a fix in the works, but there's been no confirmation yet when it will be available. The researchers also say that there's nothing you can do to protect your iPhone from this vulnerability, other than to turn off the phone. More details on this issue will be discussed later today at Black Hat, hopefully outlining a path to fix this issue.

Meanwhile, the two developers have already demonstrated this flaw in action to CNET's Elinor Mills, proving its existence and extent of the threat.

We'll be providing more coverage on this issue once it's unveiled, so stay tuned to TUAW.

Tags: Black hat, BlackHat, iPhone, security, sms, vulnerability

Filed under: Analysis / Opinion, Cult of Mac, Bad Apple, Apple

Editorial: Behind the MacBook "Hack"

by Dan Lurie (RSS feed) on Aug 4th, 2006


The web has been on fire the past few days with news of a presentation given at the BlackHat computer security conference featuring the compromising a MacBook Pro by executing very low-level code on the drivers of a wireless card. Whether or not the exploit presented actually counts as hacking of a Macintosh (they used a third party wireless card) is not at issue in this post. What I think is more important is the fact that these guys chose to demonstrate the vulnerability on a Mac, instead of a Windows or Linux machine, which are also vulnerable to the exploit. The presenters cited the "Mac userbase aura of smugness on security" as their reason for choosing a Mac as their guinea pig.

Some readers might attribute this negative attitude toward Mac users as one held only by uninformed Windows users and malicious hackers, but that is far from the case. Many very intelligent and highly respected members of the tech community feel the same way. Some of them even used to love Macs.

Before pointing any fingers and making any accusations about who lost their mind when, I think we need to take a step back and examine our behavior.

Continue readingEditorial: Behind the MacBook "Hack"

Tags: anger, apple, blackhat, crisis, hack, intel, macbook, osx, pro, switch, ubuntu, users

Tip of the Day

Want to drag a file to another folder and copy it instead of moving it? Press the Option key when you drag that file and it'll be duplicated rather than moved entirely.

Learn More

Follow us on Twitter!

TUAW flickr Pool

www.flickr.com
 TUAW [Cafepress]

Featured Galleries

DNC Macs
Macworld 2008 Keynote
Macworld 2008 Build-up
Google Earth for iPhone
Podcaster
Storyist 2.0
AT&T Navigator Road Test
Bento for iPhone 1.0
Scrabble for iPhone
Tom Bihn Checkpoint Flyer Briefcase
Apple Vanity Plates
Apple booth Macworld 07
WorldVoice Radio
Quickoffice for iPhone 1.1.1
Daylite 3.9 Review
DiscPainter
Mariner Calc for iPhone
2009CupertinoBus
Crash Bandicoot Nitro Kart 3D
MLB.com At Bat 2009
Macworld Expo 2007 show floor

 

Most Commented On (7 days)

Recent Comments

More Apple Analysis

More from AOL Money and Finance

AOL Radio TUAW on Stitcher