An SMS message that lets hackers take over iPhones remotely is set to be exposed at a Black Hat conference.
The flaw allows the hacker to gain access to nearly all access of the phone, meaning the camera, browser and phone functions can be remotely used.
Charlie Miller, the security researcher who uncovered the flaw (along with fellow researcher Collin Mulliner) says he has notified Apple to the problem, and the company hasn't (yet) responded with a patch.
The hack works by sending 512 text messages to a phone (although only one is visible) and then using an exploit in software to let the code from the text overrun into other parts of the phone.
Unknown attacker
The symbol on the one message could actually be changed to anything, so the person wouldn't know they've been the victim of an attack.
The hack will then use the phone to send texts to other users, meaning if left unchecked it could easily spread around the world.
The duo both say they've given Apple more time than ever to respond to the attack, yet it hasn't released a patch, so will be going ahead and revealing the exploit.
They've also found a similar problem with Windows Mobile, but admit they only found that last week and haven't notified Microsoft as yet.
Via Forbes
Your comments (4) Click to add a new comment
mgnjfhdhd
August 1st
4. Using this hacking system will enable the hackers to know your personal details including your contacts and pictures.Well, we all knew it was bound to happen – there is an iPhone virus floating around, at least reportedly. (And no, we do not mean the iPhone itself or its marketing.) An iPhone virus has begun circulating through a text message that will instantly hack your accounts that you access through the phone, and the iPhone SMS hack is being fingered for some identity thefts, and victims using payday loans to cover damage. There will be future iPhone hacks (besides Apple) to be sure, and the procedure is that if you get the fraudulent message, turn off your phone immediately. You don't want to need to cover damage done by the iPhone virus.
http://personalmoneystore.com/Cash-Advance/
Alert a moderator
mgnjfhdhd
August 1st
3. Using this hacking system will enable the hackers to know your personal details including your contacts and pictures.Well, we all knew it was bound to happen – there is an iPhone virus floating around, at least reportedly. (And no, we do not mean the iPhone itself or its marketing.) An iPhone virus has begun circulating through a text message that will instantly hack your accounts that you access through the phone, and the iPhone SMS hack is being fingered for some identity thefts, and victims using payday loans to cover damage. There will be future iPhone hacks (besides Apple) to be sure, and the procedure is that if you get the fraudulent message, turn off your phone immediately. You don't want to need <a rev="vote for" title="iPhone Virus Can Wipe Out Your Bank Account" href="http://personalmoneystore.com/Cash-Advance/ ">cash advances</a> to cover damage done by the iPhone virus.
Alert a moderator
blackdalek
July 30th
2. I agree. It's like they are holding Apple to a ransom.....
If they are clever enough to find & exploit the flaw, surely they could also supply a fix.....( for a small fee? )
Alert a moderator
madjedi
July 30th
1. Why release details of such a major security flaw when you know there no current cure for the problem. Ok Apple is taking their time fixingg it but why cause so much trouble for innocent iphone users? please keep it secret!
Alert a moderator
Tell us what you think
You need to Log in or register to post comments