On TechRepublic: Windows 7: Slower to boot than Vista?
BNET Business Network:
BNET
TechRepublic
ZDNet

July 23rd, 2007

Did anyone really expect the iPhone NOT to have a serious security vulnerability?

Posted by Adrian Kingsley-Hughes @ 5:22 am

Categories: Apple

Tags: Apple iPhone, Security, Apple Mac OS, Apple Macintosh, Hacker, Adrian Kingsley-Hughes

In Focus » See more posts on: iPhone

A team of security experts working for Independent Security Evaluators have discovered a serious security vulnerability in Apple’s iPhone.  The vulnerability would allow a hacker to take control of the iPhone over a WiFi connection or by tricking users to visit a booby trapped website.

Basic details of the vulnerability can be found on www.exploitingiphone.com.

OK.  Cool.  Wow.  Stop the presses.

Seriously, did anyone really think that the iPhone WOULDN’T have a serious security vulnerability?  Is there anyone out there (short of those full-on Mac fanboys) that think that the iPhone code doesn’t contain LOTS of exploits waiting to be uncovered?  The only thing that surprises me about this discovery is how long it took - and that said, we don’t know if black hat researchers haven’t already discovered some exploits of their own.

There’s an interesting quote in the New York Times article by Aviel D. Rubin, founder of Independent Security Evaluators:

“Windows gets hacked all the time not because it is more insecure than Apple, but because 95 percent of computer users are on Windows,” he said. “The other 5 percent have enjoyed a honeymoon that will eventually come to an end.”

No matter how much Mac users want to kick and scream about it, hackers are turning their eyes towards Mac OS, and this is going to lead to Mac users having to face more security threats that they currently do.  The idea that a codebase as big as Mac OS is free of exploitable bugs is just plain crazy. 

Even if we had a 100% secure platform (yeah right, in your dreams) the final word on security is with the person sitting in front of the keyboard.  As the Mac OS X user base grows, so does the proportion of ID10T/PEBKAC users who will click on everything and anything to download and install all kinds of crap on their systems.  It’s this kind of user that hackers will aim for first.

Thoughts?

Adrian Kingsley-HughesAdrian is a technology journalist and author who has devoted over a decade to helping users get the most from technology. He also runs a popular blog called The PC Doctor. See his full profile and disclosure of his industry affiliations

Want to get in touch? Got a tip? Feel free to drop me a note! I ALWAYS respect anonymity. I'm also on Twitter (@the_pc_doc)

Right to Reply: Should any industry representatives wish to comment on any posts on Hardware 2.0, I will be happy to publish their reply verbatim on this blog.

Subscribe to Hardware 2.0 via Email alerts or RSS.

  • Talkback
  • Most Recent of 47 Talkback(s)
Emotional?
Why do commenters get so emotional about security reports?

It's a security vulnerability. OS X has them all the time. You download an update.
And no, it's not surprising the iPhone has a vu... (Read the rest)
Posted by: CleanAirSystem Posted on: 07/26/07 You are currently: a Guest | | Terms of Use
One of these days  frgough | 07/23/07
So of the many security vulneabilities in OS X how...  ye | 07/23/07
Even the best, laser-guided bomb  Scrat | 07/23/07
You didn't answer the question.  ye | 07/23/07
A-ha !  None_Zealot | 07/23/07
I did not say they were exploited.  ye | 07/23/07
is this a M$ press release?  Linux Geek | 07/23/07
Shut up, fool.  James T. Kirk | 07/23/07
Windows is beter , Windows is better . Na na na na na ,,,  None_Zealot | 07/23/07
Shut up fool  xuniL_z | 07/23/07
Ditto: Shut up, fool.  No_Ax_to_Grind | 07/23/07
Triple Ditto: Shut up, fool!!! (nt)  JLHenry | 07/23/07
I'll 'fourth' that. Shut the hell up you moron  Scrat | 07/23/07
LINUX!?!  justanitguy | 07/23/07
are you all teling me that windoze is more secure than Linux?  Linux Geek | 07/23/07
You weren't invited .  None_Zealot | 07/23/07
I know nothing about Windoze so I cannot tell you...  ye | 07/23/07
More proof you're an ID-10-T...  Wolfie2K3 | 07/23/07
Hey little boy...  Linux User 147560 | 07/23/07
Wow!  JLHenry | 07/24/07
This story says everything I have been saying  BroGnorik | 07/23/07
It's a digital device  Len Rooney | 07/23/07
It's only a matter of time before Apple  Scrat | 07/23/07
Just a point of clarification:  bhartman33@... | 07/23/07
this is a also likely a Mac an PC vulnerability too...  doctorSpoc | 07/23/07
Hey, Adrian!! You called it!!!  JLHenry | 07/23/07
so it's not important that other mobiles likely have same vulnerability?  doctorSpoc | 07/23/07
Other mobiles  M.R. Kennedy | 07/23/07
can you read? one of the vector is from wireless access pt..  doctorSpoc | 07/23/07
i.e. Safari exploit... likely generic mobile device vulnerability...  doctorSpoc | 07/23/07
to answer your question: up to now "Yes", unlike windows. NT  Non-Zealand | 07/23/07
you must be starved for attention  xuniL_z | 07/23/07
PC User Perspectives on iPhone + Mac OS x  kevin.manson@... | 07/23/07
Because it makes all the difference...  Scrat | 07/23/07
Headline is correct...and it did take a long time.  mrs1622 | 07/23/07
He didn't say that...  Wolfie2K3 | 07/23/07
From ZDNET's POV ...  jbelkin | 07/23/07
There is a 100% secure OS (and its not Linux)  DarthRidiculous | 07/23/07
RE:There is a 100% secure OS  ruped24 | 07/23/07
good one  DarthRidiculous | 07/23/07
Isn't that an AS/400?  maldain | 07/23/07
Yes.. It's AS/400 and Yes....  sparky10020@... | 07/23/07
Sorry... Not bashig yoo Maldain.  sparky10020@... | 07/23/07
RPG  xuniL_z | 07/25/07
I found thi interesting  John Zern | 07/24/07
Same old drivel  henklaak | 07/24/07
Emotional?  CleanAirSystem | 07/26/07

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Click Here
advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

Archives

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here