Exploit of iPhone Relies on Social Engineering; Threat Exaggerated

Pete Mortensen (10:16 pm PDT, Jul 23 2007)


Watch the video up top. It’s a pretty terrifying video of a totally compromised iPhone through a new exploit of Safari, both on iPhone and likely PCs and Macs. A fix is already in the works, but I have to say I’m not that bothered. Why? Because it, like every other really dangerous exploit of a Mac or Apple product I’ve seen is heavily reliant on social engineering. For your iPhone to freak out and possibly shoot your cats with an iLaserbeam, you first need to go to a website specifically designed to make your iPhone freak out and kill your kittens. And I’m sorry, there’s no amount of protection that can protect people who are dupes for fraud. You can only go so far. This hole needs to close, no doubt, but if people vulnerable to harm on the web don’t know to only go to links they can trust, they probably shouldn’t be using the web at large.

Now, when people can make this happen over WiFi without the use of an exploit-focused website, then I’ll panic. And probably go back to landlines.

Via NY Times.

Apps you might like

12 comments »

Comments by

About the author

Petemortensen

Pete Mortensen is a design strategist for consulting firm Jump Associates and the co-author of Wired to Care: How Companies Prosper When They Create Widespread Empathy, a book and blog that are significantly more interesting than you might initially think. Pete's particular Apple avocations are both around design--interface and industrial. Follow him on Twitter!

(sorry, you need Javascript to see this e-mail address)| Read more posts by .

Posted in iPhone |


scribol