Results 1 to 10 of 10
  1. #1

    Retired Prophet
    ToxicJew.'s Avatar
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616
         User Info     Contact     Gamer ID
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616

    Contact info:

    Youtube Channel: http://www.youtube.com/kennethbgoodin

    Default Apple responds to the news of the exploit in SMS.



    Earlier I broke the news that our friend and iOS hacker pod2g had uncovered a major security flaw in the way the iPhone handles SMS. The exploit basically allows anyone to specify a different reply-to phone number when sending you a text message. You can easily imagine various scenarios of how this could be used maliciously.

    Today, Apple sent a statement that doesnt necessarily makes me feel better about the exploit found, but which does insist on the fact that iMessage is more secure than standard text messages.

    In a statement sent to Engadget, Apple explains:

    Apple takes security very seriously. When using iMessage instead of SMS, addresses are verified which protects against these kinds of spoofing attacks. One of the limitations of SMS is that it allows messages to be sent with spoofed addresses to any phone, so we urge customers to be extremely careful if theyre directed to an unknown website or address over SMS.
    Apple is basically telling us two things here:

    1. iMessage is safer than SMS.
    2. They are not going to do anything about this SMS exploit.

    It seems to me that all Apple would have to do is enable the thing in other phones that tells you the original sending number and the reply-to number, but I'm not exactly an SMS expert.

    0 Not allowed! Not allowed!
    ส็็็็็็็็็็็็็็็็็็็็็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้ส็็็็็็็็็็็็็็็็็็็็ ็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้

  2. #2
    mini mini's Avatar
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
         User Info     Contact     Gamer ID
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
    Gamer IDs

    PSN ID: minnesotastyle

    Contact info:

    Youtube Channel: www.youtube.com/user/codeleakerforums

    Default

    But can't you use the SMS exploit on basically any mobile phone?

    0 Not allowed! Not allowed!


  3. #3

    Retired Prophet
    ToxicJew.'s Avatar
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616
         User Info     Contact     Gamer ID
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616

    Contact info:

    Youtube Channel: http://www.youtube.com/kennethbgoodin

    Default

    No, that's what I explained in the final paragraph, which consequently is the only one I wrote.

    Quote Originally Posted by ToxicJew
    It seems to me that all Apple would have to do is enable the thing in other phones that tells you the original sending number and the reply-to number,
    In other cell phones, this is already an enabled thing.

    0 Not allowed! Not allowed!
    ส็็็็็็็็็็็็็็็็็็็็็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้ส็็็็็็็็็็็็็็็็็็็็ ็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้

  4. #4
    mini mini's Avatar
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
         User Info     Contact     Gamer ID
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
    Gamer IDs

    PSN ID: minnesotastyle

    Contact info:

    Youtube Channel: www.youtube.com/user/codeleakerforums

    Default

    I'm sorry. I didn't exactly know what you meant. They will catch a lot of flak for this if they don't do anything about it.

    0 Not allowed! Not allowed!


  5. #5

    Retired Prophet
    ToxicJew.'s Avatar
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616
         User Info     Contact     Gamer ID
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616

    Contact info:

    Youtube Channel: http://www.youtube.com/kennethbgoodin

    Default

    It's fine, didn't mean to come off as rude. Apple is taking the approach of "Don't be stupid and it won't affect you."

    0 Not allowed! Not allowed!
    ส็็็็็็็็็็็็็็็็็็็็็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้ส็็็็็็็็็็็็็็็็็็็็ ็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้

  6. #6
    mini mini's Avatar
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
         User Info     Contact     Gamer ID
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
    Gamer IDs

    PSN ID: minnesotastyle

    Contact info:

    Youtube Channel: www.youtube.com/user/codeleakerforums

    Default

    Yeah, but they don't take into consideration that people are stupid and will make a big shitfit out of it.

    0 Not allowed! Not allowed!


  7. #7
    Frozenbit.io Vintage's Avatar
    Join Date
    Aug 2011
    Location
    Behind you
    Posts
    4,256
    Points
    6,291
         User Info     Contact     Gamer ID
    Join Date
    Aug 2011
    Location
    Behind you
    Posts
    4,256
    Points
    6,291

    Default

    So they are going to take care of this like how Activision takes care of wii, not doing anything.

    0 Not allowed! Not allowed!

  8. #8
    mini mini's Avatar
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
         User Info     Contact     Gamer ID
    Join Date
    Aug 2011
    Location
    Minnesota
    Posts
    1,988
    Points
    2,840
    Gamer IDs

    PSN ID: minnesotastyle

    Contact info:

    Youtube Channel: www.youtube.com/user/codeleakerforums

    Default

    Quote Originally Posted by [email protected] View Post
    So they are going to take care of this like how Activision takes care of wii, not doing anything.
    No, they will eventually have to somehow. This will get a lot of heat.

    0 Not allowed! Not allowed!


  9. #9
    Breathe Carolina <3
    Former GFX'er
    TrueCrime's Avatar
    Join Date
    Dec 2009
    Location
    CHIRAQ NIGGA
    Posts
    2,059
    Points
    4,483
         User Info     Contact     Gamer ID
    Join Date
    Dec 2009
    Location
    CHIRAQ NIGGA
    Posts
    2,059
    Points
    4,483

    Default

    So how does this SMS exploit would be used?

    0 Not allowed! Not allowed!
    epicly memed

  10. #10

    Retired Prophet
    ToxicJew.'s Avatar
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616
         User Info     Contact     Gamer ID
    Join Date
    Mar 2011
    Location
    S̢͎̳̞̲͈̪̳̻ͮͩt̟̳̏ͬ̔&#
    Posts
    7,809
    Points
    7,616

    Contact info:

    Youtube Channel: http://www.youtube.com/kennethbgoodin

    Default

    There's another thread on it, TrueCrime, check this section. iOS News.

    0 Not allowed! Not allowed!
    ส็็็็็็็็็็็็็็็็็็็็็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้ส็็็็็็็็็็็็็็็็็็็็ ็็็็็༼ ຈل͜ຈ༽ส้้้้้้้้้้้้้้้้้้้้้้้

Tags for this Thread

Bookmarks

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
All times are GMT -10. The time now is 03:58 PM.
Powered by vBulletin®
Copyright © 2018 vBulletin Solutions, Inc. All rights reserved.