{"id":255,"date":"2009-07-30T13:42:24","date_gmt":"2009-07-30T12:42:24","guid":{"rendered":"https:\/\/mattwpbs.com\/?p=255"},"modified":"2009-07-30T13:42:24","modified_gmt":"2009-07-30T12:42:24","slug":"iphone-owners-watch-your-text-messages-today","status":"publish","type":"post","link":"https:\/\/mattwpbs.com\/?p=255","title":{"rendered":"iPhone owners – watch your text messages today…"},"content":{"rendered":"
\"(image<\/a>

(image from nathanborror on Flickr)<\/p><\/div>\n

Writing about the iPhone is becoming a worrying habit on here, but what can I say? I like technology, and the way some things have been done with the iPhone keep catching my attention. This latest one’s a wee bit more serious than most of the stuff though.<\/p>\n

Black Hat<\/a> is this week. Black Hat is a nice big conference where a lot of people who fall on either side of the fence when it comes to IT security get together. The people who help stop people getting into systems, and the the people who like to get into systems.<\/p>\n

Given that, what do you think a company should do if someone gives them a month’s notice that they’re going to reveal an exploit that allows remote control of their product?<\/p>\n

The answer from Apple seems to be ‘not patch it beforehand’. The end of that month’s notice, and Charlie Miller’s talk at Black Hat are today. Might be worth turning your phone off for a bit until people know what the score is. This spreads by seemingly blank text.<\/p>\n

<\/a><\/p>\n

According to the feature at Forbes, the exploit allows the hacker access over pretty much anything to do with the phone. Turning the microphone on and listening in, accessing the address book, making calls, spreading itself via texts, checking for information stored on the phone, hitting certain websites, etc, etc, etc. There’s any number of ways that this could be exploited financially – from direct revenue via premium rate texts and numbers to looking for credit card details or banking passwords that people have kept on the phone. In terms of ways it could be exploited by people just looking to cause havoc… Take your pick.<\/p>\n

Think this is just hype? Elinor Mills at CNet<\/a> met the researchers involved, and they demonstrated the hack in the wild.<\/p>\n

Here’s what happened: While I was talking on the phone to Charlie Miller, his partner, Collin Mulliner, sent me a text message from his phone. One minute I’m talking to Miller and the next minute my phone is dead, and this time it’s not AT&T’s fault. After a few seconds it came back to life, but I was not able to make or receive calls until I rebooted.<\/p>\n

The attack is enabled by a serious memory corruption bug in the way the iPhone handles SMS messages, said Miller, a senior security researcher at Independent Security Evaluators. There is no patch, despite the fact that Apple was notified of the problem about six weeks ago, he said.<\/p><\/blockquote>\n

Forbes<\/a> (via Engadget<\/a>)<\/p>\n","protected":false},"excerpt":{"rendered":"

Writing about the iPhone is becoming a worrying habit on here, but what can I say? I like technology, and the way some things have been done with the iPhone keep catching my attention. This latest one’s a wee bit more serious than most of the stuff though. Black Hat is this week. Black Hat […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[57],"tags":[124,125,126],"class_list":["post-255","post","type-post","status-publish","format-standard","hentry","category-technology","tag-exploit","tag-i-swear-to-god-this-is-not-an-iphone-blog","tag-iphone"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/pAkBY-47","jetpack-related-posts":[{"id":244,"url":"https:\/\/mattwpbs.com\/?p=244","url_meta":{"origin":255,"position":0},"title":"The Onion can still hit right in the centre…","author":"MattWPBS","date":"July 29, 2009","format":false,"excerpt":"Apple Claims New iPhone Only Visible To Most Loyal Of Customers Heh.","rel":"","context":"In "Technology"","block_context":{"text":"Technology","link":"https:\/\/mattwpbs.com\/?cat=57"},"img":{"alt_text":"Apple-Claims-600x300.article_large","src":"https:\/\/i0.wp.com\/mattwpbs.com\/wordpress\/wp-content\/uploads\/2009\/07\/Apple-Claims-600x300.article_large.jpg?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/mattwpbs.com\/wordpress\/wp-content\/uploads\/2009\/07\/Apple-Claims-600x300.article_large.jpg?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/mattwpbs.com\/wordpress\/wp-content\/uploads\/2009\/07\/Apple-Claims-600x300.article_large.jpg?resize=525%2C300&ssl=1 1.5x"},"classes":[]},{"id":612,"url":"https:\/\/mattwpbs.com\/?p=612","url_meta":{"origin":255,"position":1},"title":"This interruption in service sponsored by Nuka Cola","author":"MattWPBS","date":"October 29, 2010","format":false,"excerpt":"I am horribly addicted, not going to gigs, not sorting my photos, not blogging.","rel":"","context":"In "Technology"","block_context":{"text":"Technology","link":"https:\/\/mattwpbs.com\/?cat=57"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/mattwpbs.com\/wordpress\/wp-content\/uploads\/2010\/10\/Fallout-New-Vegas.png?resize=350%2C200&ssl=1","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/mattwpbs.com\/wordpress\/wp-content\/uploads\/2010\/10\/Fallout-New-Vegas.png?resize=350%2C200&ssl=1 1x, https:\/\/i0.wp.com\/mattwpbs.com\/wordpress\/wp-content\/uploads\/2010\/10\/Fallout-New-Vegas.png?resize=525%2C300&ssl=1 1.5x"},"classes":[]},{"id":556,"url":"https:\/\/mattwpbs.com\/?p=556","url_meta":{"origin":255,"position":2},"title":"Anyone want to buy a stolen credit card number?","author":"MattWPBS","date":"September 22, 2010","format":false,"excerpt":"Have a look at this article. Brian Krebs has an interesting post about a site where you can buy them - UK ones cost $4 to start with apparently.","rel":"","context":"In "Technology"","block_context":{"text":"Technology","link":"https:\/\/mattwpbs.com\/?cat=57"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":578,"url":"https:\/\/mattwpbs.com\/?p=578","url_meta":{"origin":255,"position":3},"title":"You know what? We ARE living in the future.","author":"MattWPBS","date":"October 13, 2010","format":false,"excerpt":"Every once in a while I have conversations with friends about the lack of futuristic things in our every day lives. By conversations, I mean rants - \"Where's my flying car? Where's my robot? Where's my [science fiction staple]?\" The kind of thing that the \"Damn Scientists\" t-shirt at Threadless\u2026","rel":"","context":"In "Ramblings"","block_context":{"text":"Ramblings","link":"https:\/\/mattwpbs.com\/?cat=440"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/mattwpbs.com\/wordpress\/wp-content\/uploads\/2010\/10\/636x460design_01-300x216.jpg?resize=350%2C200&ssl=1","width":350,"height":200},"classes":[]},{"id":468,"url":"https:\/\/mattwpbs.com\/?p=468","url_meta":{"origin":255,"position":4},"title":"Why I hate bit.ly, short.to, and the rest.","author":"MattWPBS","date":"March 30, 2010","format":false,"excerpt":"One of these goes to my home page, one goes to the Google image search results for \"fungal infection\". http:\/\/bit.ly\/bHT1Qg http:\/\/bit.ly\/beeVy5 One of these goes to a Google image search for \"kittens\", one goes to a Google search for \"David Cameron fan fiction\". http:\/\/short.to\/21yt5 http:\/\/short.to\/226iv Care to gamble when you're\u2026","rel":"","context":"In "Technology"","block_context":{"text":"Technology","link":"https:\/\/mattwpbs.com\/?cat=57"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":571,"url":"https:\/\/mattwpbs.com\/?p=571","url_meta":{"origin":255,"position":5},"title":"Two interesting ideas for video","author":"MattWPBS","date":"October 11, 2010","format":false,"excerpt":"Two interesting things which came up online recently to do with video, and the replacement of objects within. First up, there's Jeff Crouse's Un-Logo, which will replace corporate logos with the faces of their CEOs or blank space. Unlogo Intro from Jeff Crouse on Vimeo. (via Boing Boing). Second is\u2026","rel":"","context":"In "Technology"","block_context":{"text":"Technology","link":"https:\/\/mattwpbs.com\/?cat=57"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/mattwpbs.com\/index.php?rest_route=\/wp\/v2\/posts\/255","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mattwpbs.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mattwpbs.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mattwpbs.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mattwpbs.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=255"}],"version-history":[{"count":0,"href":"https:\/\/mattwpbs.com\/index.php?rest_route=\/wp\/v2\/posts\/255\/revisions"}],"wp:attachment":[{"href":"https:\/\/mattwpbs.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=255"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mattwpbs.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=255"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mattwpbs.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=255"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}