A security vulnerability affecting the iPhone and the iPad would allow hackers to offer applications that steal information, send SMS or destroy data, alerts, Monday, November 7, an expert specializing in Apple products.
Charlie Miller, a researcher at security firm Accuvant Labs, a prototype of a malicious program, offered on the App Store, the Apple online store, has confirmed this vulnerability. Malicious software has passed the dam validation service applications submitted to Apple for iOS, the operating system of iPhone, iPad, iPod, he says.
For now, there is no evidence that this vulnerability was exploited by hackers, however, is Charlie Miller. But the demonstration proves that such an attack is possible, he adds. "Until now you could download anything from the App Store without fear of malicious software. Now you do not know what an application is capable," said Charlie Miller.
The software test Miller called InstaStock. Once launched, the program tracking stock price is connected to a server and can execute commands and retrieve information without the knowledge of the user.
Apple declined to comment immediately discovered, while the researcher said he had contacted the California group about this vulnerability. But according to Forbes magazine, first broke the story, Miller received an email from Apple announcing that its developer license on the platform had been canceled. The application is also no longer available on the App Store.
0 komentar:
Post a Comment