Results 1 to 4 of 4

Thread: iPhone / Windows mobile - Ownage !

  1. #1

    iPhone / Windows mobile - Ownage !

    Everyone loves blackhat conference ..

    Here are some "fresh news"

    It is good


    If you receive a text message on your iPhone any time after Thursday afternoon containing only a single square character, Charlie Miller would suggest you turn the device off. Quickly.

    That small cipher will likely be your only warning that someone has taken advantage of a bug that Miller and his fellow cybersecurity researcher Collin Mulliner plan to publicize Thursday at the Black Hat cybersecurity conference in Las Vegas. Using a flaw they've found in the iPhone's handling of text messages, the researchers say they'll demonstrate how to send a series of mostly invisible SMS bursts that can give a hacker complete power over any of the smart phone's functions. That includes dialing the phone, visiting Web sites, turning on the device's camera and microphone and, most importantly, sending more text messages to further propagate a mass-gadget hijacking.
    But wait it gets better


    "This is serious. The only thing you can do to prevent it is turn off your phone," Miller told Forbes. "Someone could pretty quickly take over every iPhone in the world with this."

    AND IT STILL GETS BETTER


    Though Miller and Mulliner say they notified Apple about the vulnerability more than a month ago, the company hasn't released a patch, and it didn't respond to Forbes' repeated calls seeking comment.


    There will be a day (REALLY SOON) when no CISO or CSO or security admins at ground level will be confident or capable to control information outflow and inflow.. Not to mention that companies like Apple and Adbobe with their amazingly low SLA's and slow patch release policy will make things worst for everyone..



    http://www.forbes.com/2009/07/28/hac...y-hackers.html
    Last edited by ByTeWrangler; July 30th, 2009 at 08:57 PM.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  2. #2
    Gonzo District BOFH westin's Avatar
    Join Date
    Jan 2006
    Location
    SW MO
    Posts
    1,187
    This can't be true... it is made by Apple, so it is invulnerable to attack, right?

    This could really be bad news. Looks like Apple is plugging their ears, closing their eyes, and singing at the top of their lungs. If they don't acknowledge it, maybe it will just go away.
    \"Those of us that had been up all night were in no mood for coffee and donuts, we wanted strong drink.\"

    -HST

  3. #3
    They say they've also found a similar texting bug in Windows Mobile that allows complete remote control of Microsoft ( MSFT - news - people )-based devices. Another pair of SMS bugs in the iPhone and Google's ( GOOG - news - people ) Android phones would purportedly allow a hacker to knock a phone off its wireless network for about 10 seconds with a series of text
    Scary.... all these companies licensing some crap sms module from an unknown company? No Wonder homeland security is worried about the new generation of web 2.0 hackers. Now you know why they took Obama's Crackberry away. Text messages that can activate a camera phone, you got to be crapping me. Glad I sold my RIMM stock

  4. #4
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

Similar Threads

  1. May 06 security patches
    By mohaughn in forum Microsoft Security Discussions
    Replies: 9
    Last Post: May 13th, 2006, 10:17 PM
  2. Replies: 6
    Last Post: October 5th, 2004, 08:26 AM
  3. Windows 2003 Server Vulnerability
    By warl0ck7 in forum Microsoft Security Discussions
    Replies: 7
    Last Post: August 14th, 2003, 12:23 PM
  4. *Heads Up* - Many to enjoy
    By Und3ertak3r in forum AntiVirus Discussions
    Replies: 0
    Last Post: March 10th, 2003, 11:52 AM
  5. OS History and other info.
    By Remote_Access_ in forum Security Archives
    Replies: 9
    Last Post: January 12th, 2002, 03:02 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •