Apple: iPhone hacker wanted

Davey Winder
Saturday, 26 July 2008 20:37

Your IT - Mobility

If any more proof were needed, just check the experience that the Apple Core OS Organisation is after:

• A genuine passion for analyzing security technologies and developing "proof of concept" attacks
• Demonstrated creative and critical thinking capabilities and troubleshooting skills
• Industry exposure to and knowledge of OS security and UNIX internals
• A strong software development background
• Highly professional, with the ability to deliver solid work on tight schedules

Oh, and the following experience would be considered useful:

• Previous experience in operating systems and security tools
• Mac OS X exposure (end user, administrator, developer)
• Involvement in reverse engineering and security communities
• BS in Computer Science or equivalent experience/skills  

Better apply as soon as possible, Apple could do with someone who knows a thing or two about security to shore up the holes appearing in the iPhone security landscape. Holes such as the newly reported security vulnerability which could potentially leave users open to a phishing attack via spoof URL spamming.

It has been revealed that the iPhone Mail application, and Safari browsers, are vulnerable to the exploit which allows spammers to create spoofed URLs that appear to be from a trusted domain. Apple admits that the Mail application is flawed, but has yet to do the same with Safari or announce when a fix will be available according to this PC Pro magazine report.