iTWire - iPhone open to SMS attack

IT&T JOBS|Discussion forum|Technology Events|IT Education|

Today on iTWire IT News Telecommunications People Our Blogs Tech Lifestyle Releases Science Sustainability MyProfile Whitepapers

Daily ICT Newsletter FREE TRIAL

Follow the Australian Telecommunications scene NEWSLETTER- FREE TRIAL

Technology news and Jobs

Information Technology News

iPhone open to SMS attack

iPhone open to SMS attack

E-mail

by Stephen Withers
Friday, 03 July 2009
Page 1 of 2 Security researcher Charlie Miller has been digging again, and this time he's found a way to trick the iPhone into running code received as SMS messages. Featured Whitepaper 5 Best Practices for Smartphone Support Miller has become well known in the Mac security sphere, in part due to his repeated success an the PWN2OWN competitions run at the CanSecWest conferences. Now he has revealed that it is possible to use maliciously formed SMSes to install and run code on an iPhone. While SMS messages are limited to 140 bytes, there is provision for longer messages to be split into the required number of SMSes and then reassembled by the receiving handset. Miller's technique allows an attacker to install and run code with root access on an iPhone. The problem - at least until Apple delivers a patch - is that there is apparently no way of stopping an iPhone from receiving SMSes apart from putting it into airplane mode, which disables the radio completely and makes the handset useless as a phone. Apart from is PWN2OWN success, Miller has also drawn attention with his "no more free bugs" stance, pointing out that since the identification of security flaws clearly has commercial value for the software companies concerned, otherwise they wouldn't employ people to work on such issues. (There's also an underground market for such information, as working exploits can be used to plant malware on computers and related devices, which are then used to make dirty money.) << First page < 1 2 Next page > Last page - Post your comment >>

< Next story in category		Previous story in the category >

Sponsored Releases

Open Text Deepens Integration with SAP® Solutions

As Christmas Nears, AVG (AU/NZ) Advises Shoppers How to Stay Safe Online

Progress Software Successfully Enables SaaS Deployment in the Cloud for Fifth Year

British Airways selects Progress Software SOA Solutions to upgrade the travel experience

...Promote your press-releases here

Latest jobs

User Experience Architect (C4)
Consulting Services Branch Manager
Process Analyst X 4 (M4)
Content Co-Ordinator (M3)
Senior .Net Developer (M3)
Business Analyst (M17)
Test Lead
Senior Business Analyst
Business Analyst - Financial Markets, Ops focus
Technical Business Analyst - BI & DW - Contract

	Visitors last 30 days	694,279
	Subscribers	15,210

#1 independent technology news advertise here

- Advertisement -

Featured Whitepapers

	5 Best Practices for Smartphone Support Worldwide shipments of smartphones reached a high of nearly 40 million units in the third quarter of 2008, helping to grow the category by 28% from the same quarter last year.
	Legacy Tools: Not For Today’s Helpdesk Why applications like RDP, VPNs and VNC may be costing you time, money and end-user satisfaction.

Today on iTWire

Follow iTWire on Twitter

About iTWire

iTWire is all about technology news, information, jobs and community for the IT and telecommunications industry professional. Subscribe to our free ICT daily newsletter

website free tracking