Top stories

Journalists Cover Microsoft, Using Macs

It’s not an easy time for Microsoft — with Steve Ballmer having to field questions about being “buffoons” and an “evil empire”  at the shareholder’s meeting (.doc) — so when they get together “the world’s most influential technology pundits and online writers” (nb: we weren’t invited) for Mobius to discuss super-secret mobile tech you’d think [...]

Guide To Black Friday Apple Bargains: Cheap MacBooks, iPods and Accessories Galore

Here’s a guide for finding the best bargains on Apple-related gear during the infamous Black Friday sales on November 27. We’ve compiled a comprehensive list of gear from leaked photos of sales flyers and descriptions of sales.
The bargains include a 2.26 GHz MacBook + $150 gift card at Best Buy for $999.99 ; a 32GB [...]

Review: Voices Is Today’s Best Thing Ever, Grab It Now While It’s Cheap

New on the App Store is Voices from the clever folk at Tap Tap Tap. You can guess what it does.

Open it up, pick a silly voice. Helium is pretty silly. A microphone appears and the app even clears your throat for you (try it, you’ll see what I mean). Now speak your brains, and [...]

Review: Sony Walkman S540 Series Video MP3 Player

Press releases, you will hardly be surprised to hear, are rarely very interesting. But one arrived in my inbox a couple of weeks ago that made me double-take.
“Sony’s S Series Walkman,” it chattered, “is a serious challenger to the iPod Nano.” Gosh, really? Perhaps the Cult had better have a look at one, then, despite [...]

Apple Releases iPhone Update To Fix SMS Hack

12:00 pm, July 31st, 2009, Leander Kahney

iphone_update

Apple on Friday afternoon released a firmware patch for the iPhone to fix a dangerous SMS security hole.

The 3.0.1 firmware update is available now through iTunes. The 300MB update is available for the iPhone, iPhone 3G and iPhone 3GS. It doesn’t appear to contain any other features or bug fixes except for the SMS patch, according to Apple’s security advisory.

As previously reported, noted security experts Charlie Miller and Collin Mulliner revealed a major security exploit in the iPhone’s SMS system on Thursday at the 2009 Black Hat Conference in Las Vegas.

The exploit takes advantage of memory hole in the SMS system, allowing hackers root access to the device. Programs could theoretically be sent to any iPhone, through multiple SMS messages if necessary, and take over all functions, including the camera, phone and microphone. The only indication of the hack would be a SMS message containing a single square character.

Miller and Mulliner reportedly chose to reveal the exploit, which is applicable to all mobile platforms including iPhone OS, Android and Windows Mobile, at Black Hat after Apple had been unresponsive in the wake of their showing it to company officials earlier in July.

Looks like Apple woke up fast. The patch was issued in about 24 hours.

UPDATE: Google also patched its Android system on Friday, and Microsoft says it is investigating, according to BusinessWeek. To be fair, Microsoft was just informed of the vulnerability, while Apple was warned weeks ago, which may explain the speed of its patch.

Posted by Leander Kahney in Apple, News, Software, iPhone | Comment on this article

About the author

Leander Kahney

Leander Kahney is senior editor of Cult of Mac, editor of two books about technology culture, Cult of Mac and Cult of iPod, and has written for Wired, MacWeek, Scientific American, and The Observer in London. Follow Leander on Twitter @lkahney and Facebook.

Email the author | Read more posts by Leander Kahney.

Related posts from Cult of Mac

One comment

    The fact that the patch was out in 24hr makes me think that Apple has been working on it since they were told about the flaw, they just chose not to talk with the researchers about it.

    So…good thing, they fixed it (we hope); bad thing, they still can’t grok the fact that you need to talk with the security people if you expect their help in any way.

    Vox, on July 31st, 2009 at 2:47 pm

Add your comment

Name(Required)

Mail (required, but not published)

Website

Comment

Buy Inside Steve's Brain Buy from Amazon.com Buy from Barnes & Noble