Welcome Guest! To access all forums & features, please register an account or sign-in. → Why register?


Galaxy S4 'Google Edition' to be U.S.-only at launch in Back Page News

Security researcher exposes a five-year-old SMS flaw in iOS

Started by (Spork), Aug 17 2012 14:57

3 replies to this topic - - - - -

#1 (Spork)

    ANDROID-APPLE

  • 4,663 posts
    • Joined: 20-August 07

Posted 17 August 2012 - 14:57


Security researcher and iOS hacker pod2g has detailed a "serious" security flaw affecting all iPhones that he says could facilitate hackers or thieves to access your personal information. The flaw involves a malicious party spoofing the "reply" to number, essentially forcing you to send an SMS to a different number than the one you initially intended. According to pod2g, this flaw is present in all versions of iOS up to and including the latest iOS 6 beta 4.
The SMS flaw takes advantage of a feature in the PDU (Protocol Description Unit) — the protocol handles the sending and receiving of various types of messages in mobile devices. Included in the message header — similar to an email header — are various pieces of information regarding the message, including the sender details. This feature, commonly utilized for automated messages from companies and carriers, can be exploited since carriers don’t check for the validity of this information when used by third-parties. While all devices are capable of receiving these messages, iOS does not allow you to view the number that you're replying to. This enables a malicious sender to fake his identity, making you think that a trusted number is sending the SMS. Because the "reply-to" number is different to the number displayed, iOS would send your message to a hidden number without you realizing.
While this is an issue Apple should address, there isn't any immediate danger, as companies and financial institutions would never encourage sharing sensitive data over SMS. The researcher states that this could be used to impersonate your bank or incriminate you, but it's difficult to imagine a situation where a user would start divulging sensitive information through a text message. The fact that this flaw has been around since the dawn of iOS but wasn't exploited in a large enough scale to raise eyebrows, speaks volumes.

http://www.theverge....-phishing-pod2g

Ad Bot


#2 Praetor

    ASCii/ANSi Designer

  • 915 posts
    • Joined: 05-June 02

Posted 17 August 2012 - 17:28

/people bashing iOS for it's insecurity in 3....2...1...

#3 ichi

    Akihabara Style

  • 4,074 posts
    • Joined: 20-December 04

Posted 17 August 2012 - 21:24

You'd have to target a specific user (unless you find a way to spam a whole range of numbers for free) so I don't see it going widespread. It that was easy you'd be getting loads of SMS spam already, even without any kind of vulnerability.

Considering you can fake the "reply-to" number I'd think about a exploit using premium SMS services rather than trying to get any valuable info anyway.

#4 vetGrowled

    Resident Rockstar

  • 36,016 posts
    • Joined: 17-December 08
  • Location: USA

Posted 18 August 2012 - 01:46

As long as they are found and fixed.
Back to Back Page News · Next Unread Topic →


  1. Quick Nav
  2. Neowin Forums
  3. Submitted News, Guides & Reviews
  4. Back Page News