Apple iOS vulnerability exposed

Hackers can build malicious apps to exploit software flaw

Tags: Accuvant Labs ( IncorporatedApple appsApple iPadIPhone
  • E-Mail
Apple iOS vulnerability exposed Security firm discovers vulnerability in Apple's iOS that may allow iPads and iPhones to be compromised by apps containing malware.
By  Georgina Enzer Published  November 8, 2011

Apple's iPhones and iPads have a software flaw that allows malicious apps, built by hackers, to install programs, destroy information and steal personal data, according to a security expert at Accuvant Labs.

Researcher Charlie Miller, identified the problem and built a malicious program to test the flaw. The malicious app was accepted into Apple's App Store past the security vetting process, according to Reuters.

Miller told Reuters that there is no evidence that hackers have yet exploited this vulnerability in the Apple iOS, but said that the test proved that there could be malware in the App Store.

"Until now you could just download everything from the App Store and not worry about it being malicious. Now you have no idea what an app might do," Miller told Reuters.

Miller's program, a stock-market monitoring tool called InstaStock, was programmed to connect to his server once downloaded, and to then download whatever program he wanted.

Miller in 2009 identified a bug in the iPhone text-messaging system that allowed attackers to gain remote control over the devices. He said he had contacted Apple about this vulnerability.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code