iPhone cracked nasty, user data exposed
Posted on: July 27th, 2007 by perkisetAccording to an article in eWeek, the iPhone has been cracked by a group of researchers - and by cracked by I mean completely pwnd.
According to the article, Apple did not adhere to many of their vaunted security practices when deploying the iPhone OS because of the typically single-user nature of a phone. However, the networking capabilities of the phone, combined with the fact that critical services run as root on the OS-X based systems have left a hole the size of the Holland Tunnel for malicious types to exploit.
Ranging from simply collecting users’ personal data on the phone to actually converting the phone into a remote bugging device to spy on the owner, the possibilities are pretty frightening. The vector is, unsurprisingly, through malicious websites. On a normal Mac users feel secure enough to visit these sites without being vulnerable, but this somewhat overblown sense of security will extend to iPhone users and that is a bad combination.
The entire article can be read here and is a solid read. As an avid iPhone user it was an unwelcome message, but a good one to receive.
Earl Grey
WOW Perkiset
Thats pretty scary if you own one or are thinking of buying.
This could really destroy all credabilty.
fantomaster
Well, as a serious cell phone and PDA user I wouldn’t really know what to do with one of these overhyped gimmicks anyway. Not that we can get them over here yet, but I’m not to keen on having one in any case. One iPod sucking big time is more than enough IMV.
But of course it’s a generic issue: Basically, ALL types of cell phones are liable to being abused on all fronts, the most worrying being hijacking for remote bugging by some government thugs.
perkiset
Actually I do own one.
It will change the world - not because it’s apple or any other reason so pedestrian… but the interface and the ease of use normally associated with much more difficult-to-use or corporate only type devices will make it a very unfriendly world (from a marketing perspective) for dumber phones.
It is difficult to stop wanting to play with. The only really significant issue that I see is the lack of volume control for the phone… I cannot seem to find how to turn it up. Bad move. Other than that, the issues that are brought up about it are rather persnikety… they also smack of sour grapes by the envious.
@EG: Provided I practice standard ways of protecting myself there is no real danger from these types of attacks… although they do point to a rather spectacular oversite by the apple boys.
@FM: “Overhype?” I am so impressed with the way that Apple spun this turkey I just laugh. It lives up to al the good and bad that was projected about it pre-release, and it is very, very functional. Beyond style and GUI, it must be said that apple has almost approached the capabilities of organized religeon when it comes to marketing LOL…
fantomaster
“Overhype” indeed. Apple’s marketing: marvelous, no contention with that.
As for click wheel, screen keyboards and similar gimmicky interfaces - thanks, but no thanks. Again: I think the iPod sucks bigtime on that score and my personal requirements in terms of cell phones definitively rule out most of the “functionality” the iPhone’s promoting as being the next best thing after sliced bread.
But then, of course, such requirements will obviously vary.
In any case I’m glad for you that you’re happy with it - just won’t touch it with a bargepole myself, similar to not signing up for Google’s Webmaster Central LOL.
perkiset
I do like it and it fits my style perfectly… but it is vastly true that it is not for everyone. I also feel, as an occassional WH, that it is important for me to grok new directions in GUIs because I’m gonna have clients ask me for that look/feel in the near future. Apple has, yet again, made a bold step in a direction that loads of folks will try to follow… right wrong or otherwise. And I’ll need to have “gotten in” before them.
fantomaster
Seems it didn’t take too long for the mega iPhone killer to hit the market:
http://ipoor.org/