iPhone Security Flaw Allows Websites to Steal Your SMS and Mail Databases Within 20 Seconds

By John Brownlee (4:18 am, Mar. 25, 2010)

With every CanSecWest comes new proof that our Macs and iPhones are nowhere near as secure as we optimistically believed, but the latest hack to come out of the famed security conference’s Pwn2Own hacking contest should be enough to alarm everyone: a pair of European researchers have shown how just visiting a website can compromise a fully patched iPhone and hijack the entire SMS database.

The two researchers — Vincenzo Iozzo and Ralph Philipp Weinmann — lured a target iPhone to a malicious website and stole the iPhone’s entire SMS database (including deleted text messages) in just twenty seconds.

“Basically, every page that the user visits on our [rigged] site will grab the SMS database and upload it to a server we control,” Weinmann said.

It’s quite the security flaw, and according to the responsible hackers, it’s all done within the iPhone sandbox, taking advantage of the device’s non-root user, ‘mobile.’ “With this exploit, I can do anything that ‘mobile’ can do,” Weinmann said.

And what can ‘mobile’ do, exactly? Quite a bit, as it turns out. The same technique can be used to make off with a user’s phone contact list, the entire email database, stored photographs or even iTunes files.

“Apple has pretty good counter-measures but they are clearly not enough. The way they implement code-signing is too lenient,” said assisting security expert Halvar Flake.

Don’t worry about seeing this in the wild immediately: operating under CanSecWest’s usual ethical constraints, Iozzo and Weinmann will not publicize how, exactly, they carried off the hack until Apple has patched it… and for their troubles, made off with a $15,000 check, and the compromised iPhone they pwned.

Posted by John Brownlee in News, iPhone | Comment on this article

If you enjoyed this article:
Subscribe via RSS or email, or follow us on Facebook and Twitter

About the author

John Brownlee has written about a lot of things for a lot of different places, including Wired, Playboy, Boing Boing, Popular Mechanics, Gizmodo, Kotaku, Lifehacker, AMC, Geek and the Consumerist. He lives in Berlin with a charming girlfriend against whom he is currently enjoying a thirteen game cribbage winning streak, and a tiny budgerigar punningly christened after Nabokov's most famous pervert. You can follow him here on Twitter.

Email the author | Read more posts by John Brownlee.

5 comments

I love my Apple products, but I have never been under the illusion that they are impervious to computer attacks, and neither should anyone else be. Neither does this prove that Apple products are as unsafe as people are trying to make them look; every computer system has its vulnerabilities, and Apple is no exception. I am fully confident that this can be fixed.

Andrew, on March 25th, 2010 at 9:39 am

I hope Apple pays attention and release better secured phones. It’s like the hackers convention(whatever it’s called) last year in Las Vegas where if you recieve a text message, the person has hacked onto your phone.

Chris12163, on March 25th, 2010 at 10:15 am

I’ve never had a problem with my phone being compromised. I think, generally, if you’re not an idiot, you’ll be okay. Only visit sites you trust, use common sense. I dunno, what else can you say?

Conrad, on March 25th, 2010 at 11:36 am

Give a hand held the same access and power as a desktop, and you are going to need the same defences.
Security is hard, and when locked down tight, the system may be un useable.
Apple need to actually look at what MS have done with Securty Essentials and provide a basic scanner than can be updated whenever you sync or update apps.
If Apple are going to lock you into their monolithic software stack, they have a duty to make it as robust as possible.

John, on March 25th, 2010 at 2:43 pm

“I think, generally, if youâ€™re not an idiot, youâ€™ll be okay. Only visit sites you trust, use common sense.”

This doesn’t help if some evil people hijack an ad server, for example. There have been cases where malicious ads on big and trusted sites caused infections. Common sense is always helpful, but security flaws have to be fixed asap.

accolon, on March 26th, 2010 at 6:53 am

Add your comment

Today's Money-Saving Deals From DealMac.com

Latest Cult of Mac reviews

Incase Travel Kit Plus Is Your Mobile iPad Office Solution [Review]

There are hundreds of decent iPad cases out there. Unfortunately, very few leave you room for anything other than the iPad itself. What about your stand, your wireless keyboard, your charger or your headphones? Carrying all the accoutrements needed to set your iPad up and use it more like a notebook may seem to defeat [...]

Essential App #10: Skype Means Talk Is Cheap

It may be somewhat hard to remember — what with sporadically poor call performance, lots of other hardware to play around with and all those apps — that the iPhone is more-or-less primarily a tool for voice communication. And there’s no better or cheaper way to use that tool than through the Skype app. We’ll [...]

Just Mobile UpStand the Perfect Perch for your iPad [Review]

The Just Mobile UpStand iPad stand is simply perfect. The form factor the stand assumes and the material it is made of coupled with how much it weighs makes it the perfect place to perch my iPad on. The stand sits just right upon my desk and holds my iPad horizontally or vertically leaving complete [...]

Essential App #9: Yelp Will Find Anything, Anywhere, Anytime

My dad was a magician at sniffing out great places to eat. We’d drive by some hole-in-the-wall we’d never seen before, and he’d point and say, “that’s where we’ll eat, it’s good.” Then I’d scramble to check out the hole-in-the-wall’s rating using the Yelp app on my iPhone, to see if he was right. The [...]

Latest Cult of Mac how-tos

Copy Any DVD To Your Mac [How To]

With the announcement of Apple TV it’s never been more apparent that physical format is dying and your collection of DVDs is becoming more obsolete by the day. However, that doesn’t mean you have to purchase all your favorite movies again just so you can enjoy streaming them to your iOS devices. Here we’re going to show you how [...]

Integrate Facebook Chat Into iChat [How To]

Tired of having to keep that browser tab open to Facebook just so you can keep chatting with your friends? It only takes five Quick Steps to integrate iChat with Facebook’s web-chat client and because Facebook uses the Jabber protocol it’s incredibly easy to set up and use. First you’re going to need to get [...]

Turn Your Old Lamp-Style iMac Into A Glowing Robot Helmet

Got an old lamp-style iMac sitting dusty and unused since you first swooned over it back in 2003? Gut it, install a Larson Scanner Kit into the base and plop it on your head and you’re ready to attend your next Halloween party as… well.. take your pick? iMaCylon? Cyclops from the OS X-Men? [via [...]

A Feast for Your Eyes Finding Free Retina Display Wallpapers for iPhone 4 [How To]

I don’t know about you, but I’m used to being able to customize the operating systems that run on my gadgets. I like to be able to tweak a few things here and there on my Mac especially the things I have to look at all the time like my desktop background and screen saver. [...]

We're 100% Solar Powered

CultofMac's website is 100% solar powered, thanks to green hosting from AISO.net

Cult of Mac: Apple News, Reviews and How Tos

Top stories

Geek Trend: The iPhone Coffee Table, Evolution of a Species

With T-Mobile Losing German iPhone 4 Exclusivity, Will AT&T Be The Next To Topple?

The Evolution of the iPod Nano [Infographic]

iTunes 10 Now Available For Download