http://erictric.com/?p=3142
Etictric.com, 29 Jul 2009
Countdown to iPhone SMS Vulnerability: Does Apple Even Care?
Apple doesn’t have too long to react to a potential public embarrassment at the upcoming Black Hat securty conference on Thursday, July 30 with a patch to correct an SMS vulnerability. Apparently, the bug would allow hackers to take over an iPhone by sending an SMS message.
Charlie Miller, the man who discovered the bug initially mentioned this problem at the SyScan conference in Singapore earlier this month, though at that time his finding only produced an iPhone crash. Miller has since been working on the vulnerability, and claims to have finally been able to take over Apple’s flagship mobile device with a few SMS messages.
“SMS is an incredible attack vector for mobile phones,” Miller said. He went on to boast that, “All I need is your phone number. I don’t need you to click a link or anything.”
Though Miller himself reported the bug to Apple six weeks ago, there has yet to be a response from the computing giant. Miller is planning to showcase his hack along with security researcher, Collin Mulliner on Thursday.
Etictric.com, 29 Jul 2009
Countdown to iPhone SMS Vulnerability: Does Apple Even Care?
Apple doesn’t have too long to react to a potential public embarrassment at the upcoming Black Hat securty conference on Thursday, July 30 with a patch to correct an SMS vulnerability. Apparently, the bug would allow hackers to take over an iPhone by sending an SMS message.
Charlie Miller, the man who discovered the bug initially mentioned this problem at the SyScan conference in Singapore earlier this month, though at that time his finding only produced an iPhone crash. Miller has since been working on the vulnerability, and claims to have finally been able to take over Apple’s flagship mobile device with a few SMS messages.
“SMS is an incredible attack vector for mobile phones,” Miller said. He went on to boast that, “All I need is your phone number. I don’t need you to click a link or anything.”
Though Miller himself reported the bug to Apple six weeks ago, there has yet to be a response from the computing giant. Miller is planning to showcase his hack along with security researcher, Collin Mulliner on Thursday.
