Please help us by taking our survey
macnn/electronista/ipodnn

06/22/2007, 11:40am, EDT

Friday, June 22nd

from: www.electronista.com

IBM: iPhone hype to test handset security

Apple's highly anticipated iPhone -- which recently garnered more than one million enquiries via AT&T's website -- may well attract the attention of malicious users looking to breach the handset's security measures. With so much attention and hype built up around the $499/$599 gadget, experienced crackers are likely to try their hand at attacking the mobile phone, according to IBM. "We've been following it since it was announced," said Neel Mehta, the team lead of advance research group at Internet Security Systems -- IBM's security division -- in an interview with InformationWeek. "It's going to be challenging for the bad guys to exploit them like they do other [smart phones] but there will be a lot of individuals willing to try because of the amount of buzz around it... We've seen some very determined attacks on other mobile phone platforms, like the Symbian platform. A lot of these attacks are going to be very hard to launch against the iPhone."

, , 7comments, del.icio.us, slashdot, digg, buzz


Bookmark www.electronista.com now or subscribe to RSS feed.

7 comments
Reader Reactions (Please use <i></i> for italic text)

subscribe to comments
for this article




Expand All   Global Settings
wings_rfs
Hard 2 Attack, Like a Mac
0
06/22, 11:53am, EDT
"A lot of these attacks are going to be very hard to launch against the iPhone."

You don't suppose that OSX has anything to do with that, do ya?
Fresh-Faced Recruit
Joined Dec 2002
User is offline
MhzDoesMatter
re:
0
06/22, 12:17pm, EDT
Or maybe Apple's "Mine" mentality that won't allow much of anything to run on it. The only real known avenue of attack right now is safari.

Fresh-Faced Recruit
Joined Jul 2002
User is offline
testudo
OS X
0
06/22, 12:23pm, EDT
No, its not because OS X runs on it. If it were, then Apple couldn't possibly argue that the reason not to allow 3rd party apps at this time is because of security reasons.

mhzdoesmatter nailed the actual reason.
Fresh-Faced Recruit
Joined Aug 2001
User is offline
stainless
True be told...
0
06/22, 12:42pm, EDT
Hacking at the iphone is just like hacking at any other mobile... Let me outline this for you folks:

1) If it makes a WiFi connection, oops I can slip in arbitrary code in the packets. 2) Downloading of email, it displays PDF inline, more code in the PDF to all me to attack. 3) ANY connection between Safari and any other application and from the sounds of it (dial direct from Safari, Steve taunted) I can make a phone number link with malicious code embedded in the URL. 4) Same as above, but with the Google Mapping application. 5) If "apps" (yes even web 2.0 apps) are downloaded and installed then that tells me that I could in theory install a malware program that forces Safari to goto X URL upon opening or other action.

I could easily go on and being that they limited (requested limited) Safari to around 10Mb on downloads, that tells me that one can crash Safari. Now, if Safari crashes do you have to restart the phone or Safari? And I haven't even got into the hardcore hacking at OS level via Bluetooth, GSM data packets, etc.

Boy, I have to admit I am getting excited on getting mine and hacking at it!!!

Worry Some - Secure ALOT! Stainless
Fresh-Faced Recruit
Joined May 2005
User is offline
chadpengar
safari runs in sandbox
0
06/22, 1:31pm, EDT
Safari runs in a sandbox so cracking safari won't necessarily give you access to the phone. We'll see when exploits appear, if they do.
Fresh-Faced Recruit
Joined Oct 2001
User is offline
rjwill246
Yipes!! testudo is at i
0
06/22, 2:21pm, EDT
Mate, you have been wrong so often, why not give up and let IBM's experts do the talking? They just might have a clue!
Fresh-Faced Recruit
Joined Jul 2003
User is offline
zac4mac
wow
0
07/24, 1:27pm, EDT
First - thank you, testudo, for a good post, they're rare. @stainless - I've had Safari crash on my iPhone(8GB) several times and it never requires a restart of the phone, you just wind up back at the home screen and restart Safari, hit history and go back where you were. Oh rjwill246, IBM has a clue???(can you say 3GHz G5?) next you'll try to tell me that Motorola knew what was good for Apple in the late 90s and early years of the New Millenium... Z
Senior User
Joined Oct 1999
User is offline
Your Comments

In order to post comments: If you are a registered member, please login with your MacNN Forums username and password otherwise please uncheck the checkbox below.


Registered Member?
macnn forums login:

macnn forums password:

Not a member of the MacNN forums? Register now for free.

Buy from the Apple Store The Apple Store: Get great deals on the iPod video, iPod Radio Remote, Refurbished iPods starting at $79, iPod shuffle or iPod nano with free engraving, other iPod accessories for the road, or education discounts on iPods.

Convert PDF to Word: Easily Convert PDF to Word Doc, Excel, and More. Fast and Accurate. No Registration Trial

Check Out the VIERA from Panasonic!: Enter a New Visual Era with Panasonic VIERA HDTVs. An Enhanced Experience.

NewsGator Enterprise RSS: Improve Corporate Communication via Web 2.0, RSS, and Social Computing.

Get an IT Degree Online: Get solid credentials. Take your hobby to the next level. Adult Programs. Affordable.


Buy from The Apple Store, iTunes.com, Amazon.com, TechDepot, OfficeDepot, Computers4Sure, or donate.