iPhone Hacked, Compromising All Your Personal Data

Bleeding-edge early-adopters take note: The iPhone may be a sexy little device, but security experts have found a way to hack it and take complete control of the device. Complete and utter vulnerability. Hackers find their way into the phone via the iPhone’s version of the Safari web browser.

The researchers, working for Independent Security Evaluators, a company that tests its clients’ computer security by hacking it, said that they could take control of iPhones through a WiFi connection or by tricking users into going to a Web site that contains malicious code. The hack, the first reported, allowed them to tap the wealth of personal information the phones contain.

Although Apple built considerable security measures into its device, said Charles A. Miller, the principal security analyst for the firm, “Once you did manage to find a hole, you were in complete control.” The firm, based in Baltimore, alerted Apple about the vulnerability this week and recommended a software patch that could solve the problem.
[...]
Details on the vulnerability, but not a step-by-step guide to hacking the phone, can be found at www.exploitingiphone.com, which the researchers said would be unveiled today.

So far, there are no reports that anyone’s iPhone has actually been compromised this way. Yet. Be careful what you store on there until a patch is available. Heck, be careful what you store on there, period.

IPhone Flaw Lets Hackers Take Over, Security Firm Says [The New York Times]
(Photo: ten safe frogs)

Comments

Edit Your Comment

  1. Thorimm says:

    What? Apples CAN’T be hacked!

  2. banned says:

    Can we get that step-by-step guide elsewhere then!? I guess mum’s the word on all those apple lovers out there.

  3. rmz says:

    This is obviously subverise Microsoft marketing aimed to undermine our confidence in Apple’s flawless products.

  4. Brawndo says:

    The Celebrities!! and their vulnerability!! Oh, won’t someone please think of the Celebrities!!

  5. banned says:

    [www.securityevaluators.com]

    They got 2 weeks to fix until the detailed info will be printed here.

  6. rubyist says:

    “Complete and utter vulnerability.” A little sensationalist, no? You have to be tricked into triggering the exploit – something that is not at all new. There are already loads of exploits you can be tricked into viewing on your PC where even more personal information is stored.

    It’s nasty, sure, but it’s not like I can sit out on a park bench and slurp info from all iPhone users passing by …

    As mobile devices become more advanced there’s no reason to treat them any differently than your desktop devices. Expect the same vulnerabilities and the same reactions on both.

    I like the picture, though.

  7. davidaegger says:

    Wow, so an iPhone can be hacked into, just like any other phone. How is this a surprise? I realize these security ‘professionals’ want to cash in on how easy it is to get your name in the headlines if it precedes the word iPhone, but come on. Anyone that thinks they’re magically secure on ANY device that connects to the internet is wrong, be it iPhone, Nokia, Treo, Crackberry or whatever else.

    Judging by how long it’s taking to make it easy to unlock the iPhone compared with other devices, I’d say it’s just a little more secure overall.

  8. banned says:

    @davidaegger:
    You can already unlock it, and hack the activation bypassing itunes requirement as well.

  9. XianZhuXuande says:

    This won’t amount to anything. Just a grab for publicity.

  10. Hawk07 says:

    Are you sure you’re not confusing Apple with Microsoft? Apple writes perfect code with zero flaws and vulnerabilities.

  11. Trai_Dep says:

    Important, but obvious, to note that desktop OSs and iPhone OSs are different beasts. For all the Mac OS X haterz out there. :)

  12. rbb says:

    @rubyist:

    They were silly enough to be “tricked” into spending $500+ for an over-hyped phone. I don’t think it would be a problem to trick them into triggering the exploit…

  13. rubyist says:

    @rbb: nice flamebait – not biting.

  14. Nemesis_Enforcer says:

    @rbb: 1 word Awesome!!! I had to talk like 4 of my co-workers out of buying the Iphone. Mostly because almost all 1st gen tech has bugs but also cause do you really need it?

    But don’t forget Macs can create a virus and hack into alien spaceships and crash thier super computer…

  15. Hawk07 says:

    Crashed iPhone on display at apple store:

    [poopforbrains.com]

    Yeah, bad URL, but it’s safe for work.

  16. SJActress says:

    The only reason Macs are “more secure” is because hackers aren’t interested in Macs. Why would someone want to hack a computer with a bunch of compatibility problems? An iMac is simply the perfect version of a PC from 5 years previous.

    It’ll be interesting to see how poorly protected “i-crap” is since its user base is exponentially increasing.

  17. Trai_Dep says:

    *yawn*

    More flamebait. Really, don’t you guys have lives? Besides wanking to your PC Laura Croft games?

  18. Nemesis_Enforcer says:

    @trai_dep: Actually that would be Command and Conquer 3 buddy…I never liked the tomb raider games.

  19. So long the old stagnation that Apple products are entirely secure. Thousands of owners might want to re-evaluate their positions on security solutions…

    P.S. That image is classic!