Monday, July 23, 2007

The iPhone has been hacked!

It was only a matter of time, I guess-- a buffer overflow vulnerability has been found against the iPhone:

http://www.securityevaluators.com/iphone/

From the article, the researchers were able to "get access to the log of SMS messages, the address book, the call history, and the voicemail data" by sending an attack string to the iPhone via a wireless access point, a web site, or an SMS message. If you have an iPhone:

"
  • Only visit sites you trust. If you don't visit attackers' sites, you give them one less attack vector.
  • Only use WiFi networks you trust. If attackers have control of your Internet connection, they have the ability to insert exploits into any website you visit.
  • Don't open web links from emails. Many current viruses send links to malicious sites in emails that look like they are from trusted contacts."