apple
Report a problem

iPhones at risk of hijacking via SMS

Andrew Lyle   on 30 July 2009 - 22:04 · 39 comments & 6392 views

Advertisement (Why?)
Researchers have discovered a flaw within Apple's iPhone SMS feature, an exploit that could allow a hacker access to your iPhone, disabling it and rendering it utterly useless. The exploit was publicized today at Black Hat cybersecurity conference in Las Vegas today.

Cybersecurity researchers Charlie Miller and Collin Mulliner discovered how they can disable any iPhone via a simple SMS. The exploit sent consumers into pandemonium, questioning if they should shut off their iPhone's as of Thursday, when the exploit was demonstrated and documented to the public. The exploit shows up on the victims device as a single square character.

Dwight Silverman from chron.com explains that the risk of consumers iPhone being compromised is very slim. The hacker will only be able to disable your iPhone if they send an SMS directly to your phone, making it harder is that they would need to spam every phone on the market hoping to hit an iPhone.

The report left by the researchers leaves gaps that must be filled in by attempted hackers in order to properly execute the attack, something that will eventually be discovered. Dwight also suggestions that the time needed to write a program to mass attack iPhone's on the market would require about two weeks to write the code.

Apple has reportedly had a month to fix the hole and release a patch to consumers, but has yet to do so. Since the demonstration and publication of the attack, Apple may delay the release of their new iPhone 3.1 firmware update to include a patch to fix the flaw in the iPhone SMS feature.

In theory, all consumers are safe for at least another two weeks until experts predict they will see this attack surface in the wild, unless Apple can patch the flaw by then.

Share this Article

  • Technorati
  • Magnolia
  • Stumble upon it
  • Reddit
  • Blink List
  • Delicious
  • Slashdot
  • Furl
  • Facebook
  • Windows Live
  • Google
  • Newsvine
  • Yahoo
  • RawSugar
  • Netvouz

About the Author

Full name: Andrew Lyle
User name: Andrew Lyle
Contact: via forum PM
Submissions: View All
More: View Bio   New!

Related news

 

Post a comment · Send to friend Comments · There are 39 additional comments
(1 reply) #1 +TCLN Ryster on 30 Jul 2009 - 22:20
Apple have know about this for a month. Something this serious should be given far more attention and priority.

It won't take much for the hackers to write some kind of automated script to mass spam this out to all mobile numbers.
#1.1 kheldorin on 31 Jul 2009 - 03:41
Nah, it gives Apple the chance to see how strong their Reality Distortion Machine and test the loyalty of their followers. Why spend the effort on fixing it when it won't affect people's opinion at all?

You know, times has changed when the Unix/Linux based OS who were thought to be somehow inherently more secure because "it was built from the base for security" are actually more vulnerable than the Windows OS. Shows you how much we know is not based on facts but on popular opinion. At least, Google was quick to patch it.
(3 replies) #2 freeza on 30 Jul 2009 - 22:22
I only want to use it on two maybe three people max.
#2.1 evo_spook on 30 Jul 2009 - 22:51
freeza said,
I only want to use it on two maybe three people max.


And I hope you get done for criminal activity then
#2.2 freeza on 31 Jul 2009 - 00:35
evo_spook said,
And I hope you get done for criminal activity then


That's cute, thanks. I'll assume you are the model citizen.
#2.3 +TCLN Ryster on 31 Jul 2009 - 09:12
freeza said,
That's cute, thanks. I'll assume you are the model citizen.

I'm sure he's not, but I'd bet he's not a vandal as you're claiming to be.
(1 reply) #3 Wanderermy on 30 Jul 2009 - 22:25
I bet they'll charge $9.99 for "Security Enhancements"
#3.1 cakesy on 31 Jul 2009 - 02:39
Wanderermy said,
I bet they'll charge $9.99 for "Security Enhancements"


Yeah, because they have never charged for an update to the iPhone yet, but don't let facts get in the way. If apple have known about this, there is no excuse for them not putting out a fix. They are released 3.1 soon, maybe the fix is in there, but they should have rushed out a fix sooner. Unless the hack is weak anyway.
(1 reply) #4 DomZ on 30 Jul 2009 - 22:29
It would be funny if the dev team issues a patch, after the "jailbreakers will bring down the cell towers" fiasco
#4.1 lflashl on 30 Jul 2009 - 23:16
lol, now that would be!!
(6 replies) #5 bob_c_b on 30 Jul 2009 - 23:50
"Dwight Silverman from chron.com explains that the risk of consumers iPhone being compromised is very slim. The hacker will only be able to disable your iPhone if they send an SMS directly to your phone, making it harder is that they would need to spam every phone on the market hoping to hit an iPhone."

Nothing to see here, move along!
#5.1 +Chrono951 on 31 Jul 2009 - 00:43
However, spamming the At&t network would probably result in a bunch of hits. Even just one hit could cause a mass pandemic if the news organizations make a big deal of it.
#5.2 vetneufuse on 31 Jul 2009 - 01:35
bob_c_b said,
"Dwight Silverman from chron.com explains that the risk of consumers iPhone being compromised is very slim. The hacker will only be able to disable your iPhone if they send an SMS directly to your phone, making it harder is that they would need to spam every phone on the market hoping to hit an iPhone."

Nothing to see here, move along!


So what he's saying is the standard excuse for Apple, the market share is so small, you are safe then!...
#5.3 bob_c_b on 31 Jul 2009 - 02:27
neufuse said,
So what he's saying is the standard excuse for Apple, the market share is so small, you are safe then!...


So you can't read, he said you'd have to spam every phone in a specific market unless they had your specific number to target. But you keep spinning that anyway you like.
#5.4 cakesy on 31 Jul 2009 - 02:41
bob_c_b said,
So you can't read, he said you'd have to spam every phone in a specific market unless they had your specific number to target. But you keep spinning that anyway you like.


Well if you could takeover the phone with an sms, you only need to get one, and then that phone forward it to all the people in their address book. I am not sure it works that way though, but if it does that is pretty bad.
#5.5 Minooch on 31 Jul 2009 - 04:48
That’s right it could potentially spread like a virus from phone to phone.

Thank God I have a HTC with HardSPL (Brick-Proof)
#5.6 +Chipshop on 31 Jul 2009 - 09:49
bob_c_b said,
"Dwight Silverman from chron.com explains that the risk of consumers iPhone being compromised is very slim. The hacker will only be able to disable your iPhone if they send an SMS directly to your phone, making it harder is that they would need to spam every phone on the market hoping to hit an iPhone."

Nothing to see here, move along!


What the hell do you mean 'Nothing to see here'?
It would be relatively easy to hit an iphone after just a few tries especially as they locked to a specific network (O2 over here).
(3 replies) #6 Pam14160 on 30 Jul 2009 - 23:51
Fox news had a piece on this very subject this afternoon. Sasha (don't remember his last name) a reporter for PC Magazine and PCMAG.com indicated that for those of you who are hit with this virus you can do several things to curb it until Apple fits the problem. If you notice a small square in the lower half of the screen do not click on it, but do the following: Either put in airplane mode, or just turn it off; this will eliminate the virus. If you do click on the square it may or may not cause you problems. He also stated this is not just a problem on the iPhone, it is also related to the Blackberry, the Google Android (Google as already issue a patch), and several other cell-phone companies.
#6.1 Minooch on 31 Jul 2009 - 04:45
Yes, it does effect other OS' but only details for the iPhone were released
#6.2 Pam14160 on 31 Jul 2009 - 05:57
It can effect all mobile OS's according to Sasha, and as I indicated Google has already patch the Android.
#6.3 Minooch on 31 Jul 2009 - 06:12
I guess you didn't read yesterday's post!

Yesterday's Post
Windows Mobile affected too

Miller also claims he has found a bug in Microsoft's Windows Mobile devices that that allows complete remote control of the device. Miller discovered the bug last Monday and it's currently un-patched by Microsoft. It's not clear whether Miller plans to unveil full details of the Windows Mobile bug tomorrow or limited details until Microsoft has been made aware.
(1 reply) #7 lordcanti86 on 31 Jul 2009 - 01:19
Anti-virus software for the iPhone

THE TIME IS NOW!
#7.1 vetneufuse on 31 Jul 2009 - 01:36
lordcanti86 said,
Anti-virus software for the iPhone

THE TIME IS NOW!


Psh, Apple tells me I don't need no stinking PC ish Anti-Virus program
#8 TechGuyPA on 31 Jul 2009 - 02:12
Not that I'm trying to "Think Criminal", however, I'm sure I could find an AT&T store (in the US, insert your local carrier in the rest of the world) and find someone that for $100 bucks or so (especially if they are young or look like they dont care about their job, of which I know of one already at the counter at the store in my area), and get him to give me a handful of numbers from AT&T i-phones that come in for repair, upgrade, whatever.......
I was in an AT&T store the other day and saw 9 or 10 i-Phones go into the service dept in about 90 min. Then like one of the comments above, this doesnt have to hit everyone, just a handful of people and it will get media attention and the rest would be .......
Again, I wouldnt do that, but if I can think of that off the top of my head, I'm sure a someone else out there would try.
PS - Don't own i-Phone and very happy I dont
(2 replies) #9 atari800 on 31 Jul 2009 - 02:40
I am replying from my iPhone to this and all I half to say is tha.....192384094350921340 sfddvdxv xcvxchhh e eert9
syntax error
cd /
rm -rf *
#9.1 +TCLN Ryster on 31 Jul 2009 - 09:16
You forgot the little square.
#9.2 +Chipshop on 31 Jul 2009 - 09:50
Get your coat now! haha
#10 The Gunslinger on 31 Jul 2009 - 06:55
I think the ones that are really vulnerable are the corporate users. I know in our company we roll out blackberrys to the higher ups. I am sure some companies use iphones. Now imagine if you could hijack the a corporate iphone, then spread a virus through all the iphones in the company...
#11 DrScouse on 31 Jul 2009 - 07:35
Apple has reportedly had a month to fix the hole and release a patch to consumers, but has yet to do so. Since the demonstration and publication of the attack, Apple may delay the release of their new iPhone 3.1 firmware update to include a patch to fix the flaw in the iPhone SMS feature.


So they werent planning on fixing the flaw then...???

In theory, all consumers are safe for at least another two weeks until experts predict they will see this attack surface in the wild, unless Apple can patch the flaw by then.


Perhaps sooner, now the exploit has been made public...!!!!???!!!!! hmm, is there not a lesson there....???
#12 CRTrials on 31 Jul 2009 - 09:57
I had great fun yesterday copy and pasting a small square off the web and sending it to my friends with iphones. Tehehe.
#13 +Chicane-UK on 31 Jul 2009 - 11:11
Slightly astonishing that Apple haven't rushed to get this resolved. I appreciate firmware updates are a fairly big deal and all that, but given the severity of this, I'd personally like to get it fixed pronto!
(1 reply) #14 +bmdixon on 31 Jul 2009 - 11:39
I'm not sure if this is exactly the same but the BBC are claiming this affects more than just the iPhone, and includes windows mobile and android. Link
#14.1 bob_c_b on 31 Jul 2009 - 13:02
bmdixon said,
I'm not sure if this is exactly the same but the BBC are claiming this affects more than just the iPhone, and includes windows mobile and android. Link



It is the same thing, and the exploit isn't nearly as easy to achieve as some in this dicussion would like to suggest, but then again most of those people have only read the headline and not the article.
(2 replies) #15 +Chicane-UK on 31 Jul 2009 - 13:11
Appe are apparently due to release a patch on Saturday to resolve this...

http://news.bbc.co.uk/1/hi/technology/8177755.stm

Glad they pulled their socks up!
#15.1 +TCLN Ryster on 31 Jul 2009 - 15:39
Will this be 3.0.1 or 3.1 I wonder?
#15.2 +TCLN Ryster on 31 Jul 2009 - 21:01
TCLN Ryster said,
Will this be 3.0.1 or 3.1 I wonder?

3.0.1 it seems
#16 saltfalcon on 31 Jul 2009 - 14:46
wake up Apple do sth about it !!!!!!!!!
#17 hagjohn on 31 Jul 2009 - 17:46
Windows Mobile and Android based phones are also vulnerable.
#18 477!14 on 31 Jul 2009 - 18:54
I wonder if an app like Mcleaner would work to help protect against this? im not sure if this application actually blocks text messages, or simply automatically deletes them immediately after they come in..

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Advertisement (Why?)
News powered by Neowin Management System (Build - 5.0.1390) © 2000 - 2008 Neowin.net