MacBook hacker reveals potential iPhone security hole

The researcher responsible for hacking the MacBook in seconds tells of a potential way to break into the iPhone.

The security researcher who recently hacked into a fully-patched Macbook via Safari in seconds has claimed to have found a security weakness in the Apple iPhone.

Charlie Miller, researcher for Independent Security Evaluators, was one of the first to hack the first generation iPhone. He told of the potential iPhone 3G bug at Europe's Black Hat conference.

Miller claimed that shellcode could be run from the command line of the latest version (2.2.1) of the iPhone operating system. This allows access to the entire file system to run hundreds of different commands.

This was possible on the first version of the iPhone, but it was thought that the latest version of the software was strong enough to prevent this.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Mac security company Intego's blog said that Miller's revelation was currently just a warning, and that an exploit still needed to be written to take advantage of the flaw.

It said: "Mac OS X can run shellcode in fact, many trojan horses exploit this ability but this is an inherent part of the operating system.

"The real issue is exploits that may be able to launch this code on an iPhone, and we're waiting for those to arise."

The whole talk can be found here.

Featured Resources

How inkjet can transform your business

Get more out of your business by investing in the right printing technology

Download now

Journey to a modern workplace with Office 365: which tools and when?

A guide to how Office 365 builds a modern workplace

Download now

Modernise and transform your sales organisation

Learn how a modernised sales process can drive your business

Download now

Your guide to managing cloud transformation risk

Realise the benefits. Mitigate the risks

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/mobile/28299/how-to-use-chromecast-without-wi-fi
Mobile

How to use Chromecast without Wi-Fi

5 Feb 2020
Visit/cloud/cloud-computing/354767/google-cloud-snaps-up-multi-cloud-analytics-platform-for-26bn
cloud computing

Google Cloud snaps up multi-cloud analytics platform for $2.6bn

13 Feb 2020
Visit/operating-systems/27717/how-to-fix-a-stuck-windows-10-update
operating systems

How to fix a stuck Windows 10 update

12 Feb 2020
Visit/cloud/microsoft-azure/354771/microsoft-azure-is-a-testament-to-satya-nadellas-strategic-nouse
Microsoft Azure

Microsoft Azure is a testament to Satya Nadella’s strategic nouse

14 Feb 2020