Wed Jul 6, 2011 6:16pm EDT
* Criminal hackers could exploit bug to infect devices
* They could develop malware that lets them control devices
* Apple says developing software fix
By Jim Finkle
BOSTON, July 6 (Reuters) - Hackers have disclosed a bug insoftware from Apple Inc (AAPL.O) that security experts saidcould be exploited by criminals looking to gain remote controlover iPhones, iPads and iPod Touch devices.
The security flaw in Apple's iOS operating system came tolight on Wednesday as the website www.jailbreakme.com releasedcode that Apple customers can use to modify the iOS operatingsystem through a process known as "jail breaking."
Some Apple customers choose to jail break their devices sothey can download and run applications that are not approved byApple or use iPhone phones on networks of carriers that are notapproved by Apple.
Security experts warned that criminal hackers coulddownload that code, reverse engineer it to identify a hole iniOS security and build a piece of malicious software within afew days.
"If you are a malicious attacker, it is fairly doable,"said Patrik Runald, a senior researcher with the Internetsecurity firm Websense.
Apple has yet to release an update to iOS that protectscustomers against malicious software that exploits the flaw.
Apple spokeswoman Trudy Muller said the company was awareof the problem.
"We are developing a fix that will be available to customersin an upcoming software update," Muller said.
Apple has long been vocal against jail breaking, which ifdone voids the warranty on its devices.
Any security flaw in iOS software -- which runs Apple'siPhone, iPad tablet and iPod Touch -- has the potential toaffect millions of devices that are at the core of Apple'sbusiness.
Apple has sold 25 million iPads since it launched lastyear. The company sold over 18 million of its popular iPhonesin just the first three months of the year.
Hackers can exploit the iOS vulnerability by creating amalicious PDF document file. It would infect Apple devices whenusers attempt to open that document, according to Runald.
Once the device is infected, hackers could "do anythingthey want," Runald said. That includes stealing passwords,documents and emails.
Comex, a 19-year-old hacker from New York State whodeveloped the jail-breaking tool, said that Apple might be ableto patch the software before criminal hackers develop softwarethat exploits the bug.
Last time he put out a version of his jailbreakingsoftware, Apple was able to issue a patch before anybodyexploited the bug for malicious purposes.
He said that Apple might not be able to move quickly enoughthis time.
"It's not that hard to reverse engineer," he said viatelephone. (Reporting by Jim Finkle, additional reporting by PoornimaGupta; Editing by Bernard Orr)
StocksMarketsMediaTechnologyRelated Quotes and NewsCompanyPriceRelated News Tweet this Link this Share this Digg this EmailReprints We welcome comments that advance the story through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can flag it to our editors by using the report abuse links. Views expressed in the comments do not represent those of Reuters. For more information on our comment policy, see http://blogs.reuters.com/fulldisclosure/2010/09/27/toward-a-more-thoughtful-conversation-on-stories/Comments (0)Be the first to comment on reuters.com. Add yours using the box above.Social Stream (What's this?)#echo-stream .echo-stream-more-wrapper {display:none !important;} Start Network FooterEnd Network Footer START News Content Page Tags 'Text' | 'Picture' | 'Slideshow' | 'Video' ie. articleId ie. articleId ie. headline for article ie. headline for article END News Content Page Tags
© Copyright 2011 Thomson ReutersEditorial Editions:AfricaArabicArgentinaBrazilCanadaChinaFranceGermanyIndiaItalyJapanLatin AmericaMexicoRussiaSpainUnited KingdomUnited StatesReutersContact UsAdvertise With UsHelpJournalism HandbookArchiveSite IndexVideo IndexReader Feedback MobileNewslettersRSSPodcastsWidgetsYour ViewAnalyst ResearchThomson ReutersCopyrightDisclaimerPrivacyProfessional ProductsProfessional Products SupportFinancial ProductsAbout Thomson ReutersCareersOnline ProductsAcquisitions MonthlyBuyoutsVenture Capital JournalInternational Financing ReviewProject Finance InternationalPEhub.comPE WeekFindLawSuper Lawyers Attorney Rating Service
Reuters on FacebookThomson Reuters is the world's largest international multimedia news agency, providing investing news, world news, business news, technology news, headline news, small business news, news alerts, personal finance, stock market, and mutual funds information available on Reuters.com, video, mobile, and interactive television platforms. Thomson Reuters journalists are subject to an Editorial Handbook which requires fair presentation and disclosure of relevant interests.
NYSE and AMEX quotes delayed by at least 20 minutes. Nasdaq delayed by at least 15 minutes. For a complete list of exchanges and delays, please click here.
Brak komentarzy:
Prześlij komentarz