More modern look coming this fall.
Security Researcher Reveals iOS Security Flaw, Gets Developer License Revoked
Security researcher Charlie Miller revealed earlier today that he had found an exploit in Apple's iOS software that allows an App to run arbitrary code. Apple generally approves all code that is submitted to the AppStore and forbids the execution of un-approved code, but Miller discovered a way to bypass this restriction. Forbes writes:Miller became suspicious of a possible flaw in the code signing of Apple’s mobile devices with the release of iOS 4.3 early last year.Beyond discovering the bug, Miller went a step further and actually had an App submitted to the App Store which took advantage of this bug. The App was approved and was able to perform as expected:
...
The researcher soon dug up a bug that allowed him to expand that code-running exception to any application he’d like.
Using his method–and Miller has already planted a sleeper app in Apple’s App Store to demonstrate the trick–an app can phone home to a remote computer that downloads new unapproved commands onto the device and executes them at will, including stealing the user’s photos, reading contacts, making the phone vibrate or play sounds, or otherwise repurposing normal iOS app functions for malicious ends.Shortly after the news broke, Apple revoked Miller's developer account, citing a breach of the developer agreement.
“This letter serves as notice of termination of the iOS Developer Program License Agreement…between you and Apple,” the email read. “Effective immediately.”Miller plans to present his findings at the SysCan conference in Taiwan next week.
[ 351 comments ]
Top Rated Comments
(View all)
36 months ago
Meanwhile Google is handing out bounties for stuff like this. Because why would you want to get (almost) free help from industry-leading professionals? Submitting it to the App Store probably wasn't the way to go, though.
36 months ago
It's one thing to find a security hole and professionally inform Apple, quite another to write an app to exploit it and announce you will tell the works how to do it in a conference in a week...
Charlie is a smart guy who makes some really stupid decisions.
Professional developers disclose issues in iOS to Apple through secure channels all the time without this media madness.
Charlie is a smart guy who makes some really stupid decisions.
Professional developers disclose issues in iOS to Apple through secure channels all the time without this media madness.
36 months ago
I wasn't aware that Google rewarded people for exploiting their security flaws without their consent. :rolleyes:
No company or person likes to be exploited. Miller should have revealed the findings instead of trying to take advantage of the flaw.
No company or person likes to be exploited. Miller should have revealed the findings instead of trying to take advantage of the flaw.
36 months ago
Telling Apple about it? Excellent, have a cookie.
Uploading an exploit to a live environment where people can download it? Not cool.
Uploading an exploit to a live environment where people can download it? Not cool.
36 months ago
If you read the source article, the guy reported the bug to Apple a month ago.
----------
He submitted the bug to Apple on Oct 17 according to the source article.
----------
This makes Apple look pretty bad. And if he had submitted the bug what are the chances Apple would have responded in a timely manner if at all?
He submitted the bug to Apple on Oct 17 according to the source article.
36 months ago
https://twitter.com/#!/0xcharlie/status/133739410662494208
That pretty much explains why he submitted the app for approval.
I have no doubt that many would have said this wouldn't have got through if he simply revealed the flaw without submitting an app.
For the record, without a real app in the AppStore, people would say Apple wouldn't approve an app that took advantage of this flaw.
That pretty much explains why he submitted the app for approval.
I have no doubt that many would have said this wouldn't have got through if he simply revealed the flaw without submitting an app.
36 months ago
That's what people are supposed to do and actually do. :)
He actually reported it to Apple several weeks ago. He only apparently went public with his findings when Apple did not address the bug.
Publicizing unfixed security flaws is actually pretty common in the information security world, it is intended to get attention to the problems so that they are fixed instead of ignored.
[ Read All Comments ]
Timeful, described as "the first intelligent time manager" for mobile devices, is a new iOS app designed to help users manage their lives by combining a time management app with a calendar, a...
Apple will soon be able to offer display repairs on the iPhone 5s directly within its retail stores, alleviating the need to send the devices to an off-site repair center. As noted by 9to5Mac, Apple...
Coppertino today updated its popular Vox music player to version 2.1, adding SoundCloud integration and new options for organizing music. Vox now has the ability to stream HQ/FLAC/Lossless music from...
Apple today re-released its EFI Firmware 2.9 update for 2011 MacBook Air models after the original EFI update appeared to be causing trouble for many MacBook Air users.
The update, originally...
Nomad, the company behind the pocket-sized NomadKey iPhone cable, today debuted the NomadPlus, a product that transforms an Apple charger into a portable battery pack.
While there are hundreds...
As spotted by iClarified, Apple is now reminding customers of upcoming "sales tax holidays" that allow residents in several US states to purchase select Apple gear without paying an...
Following this morning's release of Retina MacBook Pros with improved Haswell processors, OWC has procured both the entry-level 13-inch and and the entry-level 15-inch 2014 Retina MacBook Pro and...
Instagram today soft-launched its new Snapchat competitor Bolt in Singapore, South Africa, and New Zealand. First hinted at last week, Bolt is a one tap photo and video messaging app that allows...
