+ Reply
Page 1 of 13 123 11 ... LastLast
Results 1 to 20 of 251

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: Hijacking All iPhones via SMS

is a discussion within the

iPhone News

forums, a part of the

General iPhone

section;
Cybersecurity researchers Charlie Miller and Collin Mulliner discovered how to completely hijack any iPhone via SMS. Tomorrow (Thursday) they plan on publicize and reveal the vulnerability at the Black Hat
...
  1. #1
    Owner / Founder - ModMyi
    aka cash7c3
    Cody Overcash's Avatar
    Join Date
    May 2007
    Location
    Denver, CO
    Posts
    11,893
    Thanks
    340
    Thanked 15,273 Times in 652 Posts

    Default Hijacking All iPhones via SMS
    Cybersecurity researchers Charlie Miller and Collin Mulliner discovered how to completely hijack any iPhone via SMS. Tomorrow (Thursday) they plan on publicize and reveal the vulnerability at the Black Hat cybersecurity conference in Las Vegas. They will be demonstrating how to send a series of SMS burst to the iPhone which will allow them to take complete control of EVERYTHNIG on the device and then propagate the attack by sending more SMS messages via the hijacked iPhone. According to Miller
    This is serious. The only thing you can do to prevent it is turn off your phone . . . Someone could pretty quickly take over every iPhone in the world with this.
    Since Apple has yet to address this iPhone vulnerability even though Miller and Mulliner notified Apple over a month ago. Miller suggests that if you receive a text message on your iPhone any time after Thursday afternoon containing only a single square character you should turn the device off immediately.

    This vulnerability should be heeded and patched by Apple asap (3.1 firmware anyone?). Miller knows his stuff, he was the first one to remotely hjack the iPhone in 2007 via the former bug in iPhone Safari -- old skool, as in jailbreakme.com old skool

    via forbes thx steven and jcrod73 for the tip

  2. The Following 3 Users Say Thank You to Cody Overcash For This Useful Post:

    estes123 (07-30-2009), ipirate (07-30-2009), pacmac (07-29-2009)

  3. #2
    My iPhone is a Part of Me PhoneLine's Avatar
    Join Date
    Aug 2007
    Location
    New York City
    Posts
    508
    Thanks
    65
    Thanked 155 Times in 54 Posts

    I read up on it a bit and it seems that it gives the sender of the sms root access. Any chance perhaps those that jailbroke and have changed the root/mobile passwords would be a little safer?

    This is not my cup of tea, just since the jailbreakers have more access to the phone then the regular user, I'm thinking maybe there is a way for us to combat this before the apple patch is released?

  4. #3
    Super Moderator dale1v's Avatar
    Join Date
    Sep 2007
    Location
    London, UK
    Posts
    3,786
    Thanks
    335
    Thanked 394 Times in 268 Posts

    Errr well that sucks.

  5. #4
    What's Jailbreak?
    Join Date
    Sep 2007
    Location
    Richmond, Virginia
    Posts
    23
    Thanks
    26
    Thanked 2 Times in 2 Posts

    I wonder... after turning it off, will rebooting it fix the problem?

  6. #5
    Livin the iPhone Life Bernie-Mac's Avatar
    Join Date
    Aug 2007
    Location
    Las Vegas, NV
    Posts
    1,533
    Thanks
    162
    Thanked 136 Times in 95 Posts

    Quote Originally Posted by PhoneLine View Post
    I read up on it a bit and it seems that it gives the sender of the sms root access. Any chance perhaps those that jailbroke and have changed the root/mobile passwords would be a little safer?

    That makes sense. It sounds like it would work and if it does it would be a big "suck it" to all the non-jailbroken jailbreak bashers out there. At least my jailbroken 3GS isnt going to be hacked and used towards world domination
    iLive an iLife

  7. #6
    My iPhone is a Part of Me PhoneLine's Avatar
    Join Date
    Aug 2007
    Location
    New York City
    Posts
    508
    Thanks
    65
    Thanked 155 Times in 54 Posts

    Quote Originally Posted by kingskid07 View Post
    I wonder... after turning it off, will rebooting it fix the problem?
    Well, it will probably disconnect their access till they send you another SMS with the flaw again. But if you get the text at 3am and your sleeping, the person can have full access till you notice the message.

    Maybe AT&T can block the text from coming through, since they seem to be so good at blocking things. Not a help to those unlocked, but its a start

  8. #7
    What's Jailbreak? DjPrayz's Avatar
    Join Date
    Jul 2007
    Location
    south carolina
    Posts
    7
    Thanks
    1
    Thanked 1 Time in 1 Post
    This is not good.

  9. #8
    Green Apple Sniper366's Avatar
    Join Date
    Dec 2007
    Location
    Denver
    Posts
    78
    Thanks
    8
    Thanked 7 Times in 5 Posts

    can anyone point me to a tutorial or forum regarding changing the root password on a 3GS. so long, alpine!

  10. #9
    Green Apple
    Join Date
    Nov 2008
    Posts
    63
    Thanks
    0
    Thanked 2 Times in 2 Posts

    LOL I posted this first I should get credit!
    http://www.modmyi.com/forums/general...r-hackers.html

  11. #10
    Green Apple
    Join Date
    Nov 2008
    Posts
    44
    Thanks
    1
    Thanked 1 Time in 1 Post
    credit? what can you buy with this credit?

  12. #11
    Green Apple zoolander369's Avatar
    Join Date
    Feb 2008
    Location
    Atlanta
    Posts
    98
    Thanks
    6
    Thanked 4 Times in 4 Posts

    Yikes.

  13. #12
    The One and Only GregTheWang's Avatar
    Join Date
    Mar 2008
    Location
    Boston
    Posts
    1,199
    Thanks
    29
    Thanked 59 Times in 55 Posts

    OMGWTFBBQ OUR iPHONES ARE AT RISK. ARM THE NUCLEAR WEAPONS!

  14. The Following User Says Thank You to GregTheWang For This Useful Post:

    b3nny (07-30-2009)

  15. #13
    Livin the iPhone Life
    Join Date
    Oct 2007
    Location
    Alaska
    Posts
    1,021
    Thanks
    41
    Thanked 115 Times in 112 Posts

    the drug dealers and cell tower destroyers are one step closer!!!!!!!!!!!!!

  16. #14
    Livin the iPhone Life JedixJarf's Avatar
    Join Date
    Jun 2007
    Posts
    1,917
    Thanks
    30
    Thanked 129 Times in 102 Posts

    Quote Originally Posted by Sniper366 View Post
    can anyone point me to a tutorial or forum regarding changing the root password on a 3GS. so long, alpine!
    Just install terminal on your phone or SSH into it and su root, then type passwd and it will prompt you for a new pass.

  17. The Following User Says Thank You to JedixJarf For This Useful Post:

    SNIP3R (07-30-2009)

  18. #15
    Super Duper Moderator blkcadi's Avatar
    Join Date
    Aug 2008
    Location
     Valley of the Sun, ARIZONA ♥♥♥
    Posts
    30,627
    Thanks
    3,751
    Thanked 9,676 Times in 5,939 Posts

    Scary, just scary. OMG

  19. #16
    My iPhone is a Part of Me PhoneLine's Avatar
    Join Date
    Aug 2007
    Location
    New York City
    Posts
    508
    Thanks
    65
    Thanked 155 Times in 54 Posts

    I'm guessing we won't know if changing the root password will help until after the exploit is made public.

    I've always thought changing it from the default was a good thing though either way.

  20. #17
    The King Melech518's Avatar
    Join Date
    Feb 2009
    Location
    NYC
    Posts
    4,704
    Thanks
    107
    Thanked 1,140 Times in 586 Posts

    im changing my password to binary
    If I helped you, hit the button or be Banned!

    Download Macbook 3.1 for Winterboard-Now LIVE on Cydia-Macbook Final, Macbook Final Widget,Macbook SBSettings
    Need Hardware Repair Support?: PM ME

  21. #18
    Retired Moderator StealthBravo's Avatar
    Join Date
    Jan 2008
    Location
    TX  Follow me @StealthBravo
    Posts
    32,478
    Thanks
    44
    Thanked 5,328 Times in 3,113 Posts

    I don't think changing the password will help. LMAO

  22. #19
    iPhoneaholic Rescuer's Avatar
    Join Date
    Mar 2008
    Location
    Bay Area, CA
    Posts
    417
    Thanks
    17
    Thanked 64 Times in 46 Posts

    Quote Originally Posted by chaingang54 View Post
    LOL I posted this first I should get credit!
    http://www.modmyi.com/forums/general...r-hackers.html

  23. #20
    iPhoneaholic mobsta's Avatar
    Join Date
    Dec 2007
    Posts
    326
    Thanks
    65
    Thanked 15 Times in 12 Posts

    if u get that text will removing the sim card stop it???

    instead of turning off cuz taking out the sim is quicker

Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts