Hole allows complete remote control of the handset.
So the iPhone is a closed system because Apple says it allows for far greater security… oops!
Independent Security Evaluators (ISE) have discovered that the supposedly rock solid device is actually hugely at risk if hooked up to an unsecure wireless connection.
The hack – which operates over the device’s embedded Safari browser – works by adding an exploit script into any trusted site the handset visits over the connection. Once visited a small code is downloaded onto the handset which enables data to be sent straight to the hacker.
Even worse, the exploit grants full administrative privileges and gives complete control over anything the iPhone can do, including sending text messages, making voice calls and even recording audio from the room. Once hacked, the phone also appears to return harmlessly to its home screen meaning violations can be hard to spot.
A video demonstration of the hack can be found here and while Apple has yet to comment I suspect a security patch is now its highest priority. Interestingly, the report claims the hack could also affect Windows Mobile users – but they know they use a Microsoft open platform and as a user myself I’m used to simply battening down the hatches and expecting the worst.
What’s your excuse Stevie J…?