|
Posted: 2009-08-03 14:30:02 Shortcut URL: http://t.conquent.com/L600 This isn't really an iPhone rant -- lots of smartphones have had security holes which could be exploited with the right kind of attack, and honestly this problem isn't limited to the iPhone (Google's Android platform is apparently affected, too). Apple describes it like this: A memory corruption issue exists in the decoding of SMS messages. Receiving a maliciously crafted SMS message may lead to an unexpected service interruption or arbitrary code execution. This update addresses the issue through improved error handling. In plain English, a hacker could basically get root access (super user) by sending a series of text messages that would cause the phone to almost crash, and then the hacker can run programs while the phone is dazed. Of course I find it ironic that the iPhone is vulnerable to a text messaging attack while it doesn't even support Multimedia Messaging. If you want a little ranting, when I went to update the iPhone (which Markie never synchronizes) it didn't just install a quick security patch, but instead wanted to install around 150MB of updates for Quicktime, Safari, and some kind of My Mobile platform. The Android update, by comparison, was small and painless. We actually had to go check that it had happened it was so quick and easy. And, perhaps surprisingly, my Windows Mobile 6 phone wasn't affected at all.
Teagan Drumheller: Re: iPhone SMS Security Hole 2009-08-03 21:57:49 <A href=http://news.zdnet.com/2100-9595_22-326501.html> http://news.zdnet.com/2100-9595_22-326501.html</A> Check this out- it may be a problem on more phones than you might think. This article states that Windows Mobile and Android phones are vulnerable to something rather similar to what you're describing- different effects on the various phones though. Windows Mobile phones can be effectively disabled whereas Android phones may be able to be disconnected from the network temporarily. Glad I'm running the latest firmware on my G1 though- doesn't sound fun, heh. Michael Bissell: Re: iPhone SMS Security Hole (In response to Teagan) 2009-08-03 22:47:26 I think one thing that makes this different is that iPhone users are, by and large, pretty unsophisticated technology consumers. This is their first smartphone, and a lot of them never synchronize them, never update patches, and don't even realize that they might be at risk. At least no one seems to have actually orchestrated an attack with this exploit, but if someone does, my guess is that the iPhone market will remain much more vulnerable than the geekier Android market. |
About the Author:
Linked In
Past Postings:
Using Dissent To Enhance Your Social Influence Online
Industry Profile - Author
Industry Profiles – Full Time Employees - Professional Writer
Some Thoughts On Freelancing
Building Your Online Brand
Marissa Mayer and the Change in Yahoo's Remote Workforce
LinkedIn for Professional Writers
Fake Republican Twitter Accounts
"Did you mean?" -- Google's chiding nanny of search results
Branded Technology
Sharingspree.com -- Stealing more than GroupOn's Idea
The Internet Isn't Entertaining Enough
It's not your bank... It's Apple's and Amazon's
Violated by Madison Avenue
Google+ Scares Me
"We need to..." Internet Marketing Myths
Facebook's deal with the Devil
My cool new phone is a little too cool.
You are never alone
Promotion vs. Distribution... You'd think they'd know that one...
Publishing Industry Watch
Content for Social Media
Social Media Slot Machine
Anonymous vs Me
News from the Twitter Follow Campaign Trail
The art of Indiscriminate Twitter Following
The Cloudy Meaning of The Cloud
The Demand For The Loss of Creativity
Alien Technology and Government Conspiracies
Time for a New Reality
The Death of Email
Protecting Free Speech... Anonymously (and geekily)
Amazon Shouldn't Have Shut Down WikiLeaks
The Superpowers of the Hive Mind
Time for New Ideas
Comcast, Netflix and the Mystery of the Modem
The Great Technical Disconnect
New for the Sake of New
A Retail Store Built Like the Web
Disposable Personas
When did Google Start Policing the Internet?
Getting back to HTML basics, thanks to Apple
Inspecting my Navel Base
A shoebox vs. an online backup
Is Your "Resume" Website Recruiter-friendly?
iBooks -- Creative Epicenter or Gatekeeper?
The Failure of Success
The Economy is Going to Get Worse, but that's okay
Time lost on Twitter
Client Vendor Relationships
Twitter's back alleys and dark places
Social Media is NOT Advertising
Microsoft Courier
Form (designers) versus Function (geeks)
PDXBOOM -- The power of social media and the portland pipe bomb
China and Apple -- Different organizations, same management
The volume of screens
Logorama
Google Adds Biking Directions to Maps
Transmedia
That magical little tablet
How your website can be in two places at once
Masterpieces created by sheer volume
Suing over lack of originality
A Primer on Internet Fame -- dancing babies, hamsters, numa numa, and more...
Checking my messages
Rules are made to be broken -- in a reasoned, systematic way
So many accounts, so few passwords
Who really uses Twitter? 60% of Twitter's traffic isn't on Twitter
The Web is a Jerry Rigged Kludge
Twitter: Asleep at the Mouse Wheel
Where regulation is good: Google Voice and Vonage
How Facebook is (unintentionally) forcing programmers to piss off users
The Twit Cleaner
Perfect Secretary's pitch for @Adbroad (and the Youtube API)
The Emotions of Text
The Shorty Awards Scandal -- Manual Spam is still Spam
Google Analytics, the cloud and missing numbers #fail
Helen Klein Ross & Michael Bissell Interview at Adweek's Social Media Strategies Conference
The Internet is the New 60's
Cougars from New Zealand (and I don't mean big cats)
Adding facts together, or why you can't charge your cell phone from wifi
Social Media and the Destruction of the World
Rabid Fans vs Passive Viewers -- The Coco vs Leno saga
How to tell someone to retweet (without using up your 140 characters)
You can't buy social media
A book unopened is but a block of paper
Building the LOST: The Final Season Sweepstakes
Holiday SPAM (or the lack thereof)
Archiving Twitter
Too Many Toolbars
Random Censorship with Google Adwords
Accessibility and Shopping Online
Twisted path to customer service
Flash: Shiny objects blinding your audience
Twollow and other gold rush scripts
GPS in a Laptop computer
Thinking outside the box... There was a box?
Twitter was designed for Text Messaging
It's not the corporations, damnit
Entrepreneur or Dreamer?
Adweek Social Media Twitter for Brands Presentation
Socializing is more than Social Media
Generational Marketing is a Myth (or Who's your Daddy?)
Social Media is Just the Way We Use the Internet
Twitter Followers Don't Matter (ask the porn sites)
The Internet is Gooder than Books
Sometimes you don't want your campaign to go viral
Best Twitter Branding Campaign
Like flies to crap, Spammy Twitter Followers don't really go away
iPhone SMS Security Hole
How Flipmytweet works
Cell Phones as Microscopes
Digg is not the Hijacker -- You Are
Steve Ballmer -- the walking dead?
Twitter as an open mic poetry reading
Automatic Social [un]Awareness
First splash for United Against Malaria
New Media/Old Media and the CLIO Awards
Interview at SXSW: Mad Men Twitter And Tracking
We've got an App for that -- it's called the Web
Understanding Google To Get Your Resume Noticed
The trouble with Wordpress and other templates
Wayward Words with Baggage
Speaking at SXSW March 17th
The fleeting Memory of the Internet
It's okay to say 'I don't know'
Nike Takes Over Conquent
Facebook owns this title
Excuses, excuses
A little on Social Media
Feeding on Content
Attack of the Bots
Web 1.0
Net Neutrality
Getting clever with data feeds
The Other Credit Crisis
The Broadband Inauguration
T-Mobile owns Magenta and Other Patent Stories
The Risk-takers, Doers and Makers of Things
The noise of 20,000+ Twitter Followers
30,000 feet, 500 MPH Suburban Strip Mall
Cellphones, toilets and the Inauguration
The End of Days (of song): Microsoft Songsmith Example
Browser Bigotry
The Death of your Soul: Microsoft Songsmith
Creative Development or Developing Creatively?
The Myth of Wikipedia (or the Wiki-1400)
Online/Offline Sales -- is it really that bad?
Is PayPal Tacky?
Old School Web Design Still Works
Domain Squatting
Green Chri$tma$
QA 101
Portland Snow
Get some return on that web traffic
I think they have a backup...
I'd love to have that problem
The [un]importance of statistics
Don't be a tool of viral marketing
Emails, discussions, blogs, wiki and web content
You Designed for Print First
You let someone else register your domain name
You figured .biz, .info, .us would work fine
What's after the Integrated Circuit?
Intelligent life is out there (but it's bugger all down here on earth)
Subject Matter Experts Talking Other Subject Matter
The Totalitarian Regime of Apple
Oversimplifying how people work
crowdSPRING
Creative Services for the New World
Reverse Anthropomorphism
The End of Time
Better Living Through Twitter
Lessons Learned From Apple
It's the Brand, Baby
Business Architecture vs. Web Construction
On Truth
Inverse Peter Principle
Random Knowledge
The Hive
RSS for this blog
With a career that has spanned advertising, production, technical services, and project management, Michael is able to articulate the wide range skills and professions that make the Internet work. This eclectic understanding and his desire to shine the light on those hiding behind techno babble has brought success to a wide range of projects.
Twitter @bissellLinked In
Past Postings:
Using Dissent To Enhance Your Social Influence Online
Industry Profile - Author
Industry Profiles – Full Time Employees - Professional Writer
Some Thoughts On Freelancing
Building Your Online Brand
Marissa Mayer and the Change in Yahoo's Remote Workforce
LinkedIn for Professional Writers
Fake Republican Twitter Accounts
"Did you mean?" -- Google's chiding nanny of search results
Branded Technology
Sharingspree.com -- Stealing more than GroupOn's Idea
The Internet Isn't Entertaining Enough
It's not your bank... It's Apple's and Amazon's
Violated by Madison Avenue
Google+ Scares Me
"We need to..." Internet Marketing Myths
Facebook's deal with the Devil
My cool new phone is a little too cool.
You are never alone
Promotion vs. Distribution... You'd think they'd know that one...
Publishing Industry Watch
Content for Social Media
Social Media Slot Machine
Anonymous vs Me
News from the Twitter Follow Campaign Trail
The art of Indiscriminate Twitter Following
The Cloudy Meaning of The Cloud
The Demand For The Loss of Creativity
Alien Technology and Government Conspiracies
Time for a New Reality
The Death of Email
Protecting Free Speech... Anonymously (and geekily)
Amazon Shouldn't Have Shut Down WikiLeaks
The Superpowers of the Hive Mind
Time for New Ideas
Comcast, Netflix and the Mystery of the Modem
The Great Technical Disconnect
New for the Sake of New
A Retail Store Built Like the Web
Disposable Personas
When did Google Start Policing the Internet?
Getting back to HTML basics, thanks to Apple
Inspecting my Navel Base
A shoebox vs. an online backup
Is Your "Resume" Website Recruiter-friendly?
iBooks -- Creative Epicenter or Gatekeeper?
The Failure of Success
The Economy is Going to Get Worse, but that's okay
Time lost on Twitter
Client Vendor Relationships
Twitter's back alleys and dark places
Social Media is NOT Advertising
Microsoft Courier
Form (designers) versus Function (geeks)
PDXBOOM -- The power of social media and the portland pipe bomb
China and Apple -- Different organizations, same management
The volume of screens
Logorama
Google Adds Biking Directions to Maps
Transmedia
That magical little tablet
How your website can be in two places at once
Masterpieces created by sheer volume
Suing over lack of originality
A Primer on Internet Fame -- dancing babies, hamsters, numa numa, and more...
Checking my messages
Rules are made to be broken -- in a reasoned, systematic way
So many accounts, so few passwords
Who really uses Twitter? 60% of Twitter's traffic isn't on Twitter
The Web is a Jerry Rigged Kludge
Twitter: Asleep at the Mouse Wheel
Where regulation is good: Google Voice and Vonage
How Facebook is (unintentionally) forcing programmers to piss off users
The Twit Cleaner
Perfect Secretary's pitch for @Adbroad (and the Youtube API)
The Emotions of Text
The Shorty Awards Scandal -- Manual Spam is still Spam
Google Analytics, the cloud and missing numbers #fail
Helen Klein Ross & Michael Bissell Interview at Adweek's Social Media Strategies Conference
The Internet is the New 60's
Cougars from New Zealand (and I don't mean big cats)
Adding facts together, or why you can't charge your cell phone from wifi
Social Media and the Destruction of the World
Rabid Fans vs Passive Viewers -- The Coco vs Leno saga
How to tell someone to retweet (without using up your 140 characters)
You can't buy social media
A book unopened is but a block of paper
Building the LOST: The Final Season Sweepstakes
Holiday SPAM (or the lack thereof)
Archiving Twitter
Too Many Toolbars
Random Censorship with Google Adwords
Accessibility and Shopping Online
Twisted path to customer service
Flash: Shiny objects blinding your audience
Twollow and other gold rush scripts
GPS in a Laptop computer
Thinking outside the box... There was a box?
Twitter was designed for Text Messaging
It's not the corporations, damnit
Entrepreneur or Dreamer?
Adweek Social Media Twitter for Brands Presentation
Socializing is more than Social Media
Generational Marketing is a Myth (or Who's your Daddy?)
Social Media is Just the Way We Use the Internet
Twitter Followers Don't Matter (ask the porn sites)
The Internet is Gooder than Books
Sometimes you don't want your campaign to go viral
Best Twitter Branding Campaign
Like flies to crap, Spammy Twitter Followers don't really go away
iPhone SMS Security Hole
How Flipmytweet works
Cell Phones as Microscopes
Digg is not the Hijacker -- You Are
Steve Ballmer -- the walking dead?
Twitter as an open mic poetry reading
Automatic Social [un]Awareness
First splash for United Against Malaria
New Media/Old Media and the CLIO Awards
Interview at SXSW: Mad Men Twitter And Tracking
We've got an App for that -- it's called the Web
Understanding Google To Get Your Resume Noticed
The trouble with Wordpress and other templates
Wayward Words with Baggage
Speaking at SXSW March 17th
The fleeting Memory of the Internet
It's okay to say 'I don't know'
Nike Takes Over Conquent
Facebook owns this title
Excuses, excuses
A little on Social Media
Feeding on Content
Attack of the Bots
Web 1.0
Net Neutrality
Getting clever with data feeds
The Other Credit Crisis
The Broadband Inauguration
T-Mobile owns Magenta and Other Patent Stories
The Risk-takers, Doers and Makers of Things
The noise of 20,000+ Twitter Followers
30,000 feet, 500 MPH Suburban Strip Mall
Cellphones, toilets and the Inauguration
The End of Days (of song): Microsoft Songsmith Example
Browser Bigotry
The Death of your Soul: Microsoft Songsmith
Creative Development or Developing Creatively?
The Myth of Wikipedia (or the Wiki-1400)
Online/Offline Sales -- is it really that bad?
Is PayPal Tacky?
Old School Web Design Still Works
Domain Squatting
Green Chri$tma$
QA 101
Portland Snow
Get some return on that web traffic
I think they have a backup...
I'd love to have that problem
The [un]importance of statistics
Don't be a tool of viral marketing
Emails, discussions, blogs, wiki and web content
You Designed for Print First
You let someone else register your domain name
You figured .biz, .info, .us would work fine
What's after the Integrated Circuit?
Intelligent life is out there (but it's bugger all down here on earth)
Subject Matter Experts Talking Other Subject Matter
The Totalitarian Regime of Apple
Oversimplifying how people work
crowdSPRING
Creative Services for the New World
Reverse Anthropomorphism
The End of Time
Better Living Through Twitter
Lessons Learned From Apple
It's the Brand, Baby
Business Architecture vs. Web Construction
On Truth
Inverse Peter Principle
Random Knowledge
The Hive
RSS for this blog