How safe is your smartphone?

[Gary]

Quote "Mobile handsets including iPhones and those using Windows Mobile or Google's Android operating system are vulnerable to text-based attacks, say experts"

Software code that arrives in a text message can hijack the phones, said Charlie Miller and Collin Mulliner at the Black Hat conference in Las Vegas.

The malware could knock phones off the network or access data and programs.

The team say that hackers could develop programs to exploit the weakness in as little as two weeks.

So far only Google has addresed the issue.

Maybe I'll delay leaving my symbian platform just yet 

Full story here http://news.bbc.co.uk/1/hi/technology/8177755.stm

[Rik]

I have a dumb phone.

[Gary]

I have a dumb phone.

I have a dumb ear still

[Rik]

 

[somanyholes]

never mind the addressbook etc.

send sms to victim

1. turn on microphone
2. turn on gps tracking
3. hop off phone onto local lan/ or use phone to hack wireless lans.

it's all fun at the moment. So many new holes have been shown lately in pretty much everything....

[Rik]

Living up to you name again, So.

[Sebby]

With iPhone OS 3.1 imminent, I suspect this'll be fixed very soon.

[somanyholes]

apple have been aware for a while sebby and the researcher/s did responsible disclosure.


for you gary... symbian

http://www.darknet.org.uk/2009/07/chinese-firm-writes-first-sms-worm/

[Sebby]

Yep, I read that. I suspect that now it's in the news, it'll be dealt with.

[Sebby]

Apple thought to be issuing a fix tomorrow:

http://www.macrumors.com/2009/07/31/apple-to-release-fix-for-iphone-sms-vulnerability-on-saturday/

[Rik]

It would be better if text messages were offered, rather than pushed, wouldn't it.

[Sebby]

Apple have released 3.0.1 to fix this vulnerability. Pretty good, I think.

http://www.macrumors.com/2009/07/31/apple-releases-iphone-os-3-0-1-to-address-sms-security-vulnerability/