Apple patches iPhone SMS flaw

By Shaun Nichols on Aug 3, 2009 9:10AM
Apple patches iPhone SMS flaw

Apple has issued a fix for a much publicised security hole in its iPhone handset.

The company on Friday issued the iPhone 3.0.1 software update to address the vulnerability within the iPhone's SMS software.

The flaw potentially allows an attacker to take control of a targeted phone by way of a specially-crafted SMS message. Once the flaw has been exploited, an attacker can install malware on the device or use it to perform spam runs and further attacks.

Discovery of the flaw was credited to security researchers Charlie Miller and Collin Mulliner. The two researchers formally announced and detailed the flaw earlier this week at the Blackhat security conference.

The researchers noted that similar flaws exist in the SMS components for the Google and Android and Windows Mobile platforms.

As with all other iPhone software updates, users can download and install the update through iTunes. The update is then installed when they user plugs the handset into an authorized Mac or PC system.

Discovery of the vulnerability comes as both experts and cybercriminals have been giving increased attention to mobile phones, both in terms of securing flaws and realizing potential avenues of attacks and uses for compromised devices.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
collaboration flaw iphone mobility networking researchers security services sms software technology update

Partner Content

Empowering Sustainability: Schneider Electric's Dedication to Powering Customer Success
Empowering Sustainability: Schneider Electric's Dedication to Powering Customer Success
Guiding customers on the uneven path to AI adoption
Guiding customers on the uneven path to AI adoption
MSPs with a robust data protection strategy will achieve market success
MSPs with a robust data protection strategy will achieve market success
How Expert Support Can Help Partners and SMBs Realize the Full Value of AI
How Expert Support Can Help Partners and SMBs Realize the Full Value of AI
How mandatory climate reporting is raising the bar for corporate leadership
How mandatory climate reporting is raising the bar for corporate leadership

Sponsored Whitepapers

Cut through the SASE confusion
Cut through the SASE confusion
Stay protected as cyber threats evolve
Stay protected as cyber threats evolve
Defend Your Network from the Next Generation of AI Threats
Defend Your Network from the Next Generation of AI Threats
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
The changing face of Australian distribution
The changing face of Australian distribution

Most read articles

Save-the-dates for Pipeline 2026: We're levelling up to Hamilton Island in May!

Save-the-dates for Pipeline 2026: We're levelling up to Hamilton Island in May!
The State of Channel Security

The State of Channel Security
Channel faces AI-fuelled risk as partners lag on data resilience, Dicker Data summit told

Channel faces AI-fuelled risk as partners lag on data resilience, Dicker Data summit told
Announcing the 2025 Benchmark Security Awards Partner finalists

Announcing the 2025 Benchmark Security Awards Partner finalists

Log in

Email:
Password:
  |  Forgot your password?