SpyPhone: Demo Of Malware Spread Through Appstore At Black Hat Conference

A couple of days ago we told you that this year, the Black Hat conference is all about iPhone apps malware. Following up the story, Nicolas Seriot, a Swiss expert, has created an iPhone app called SpyPhone in order to demonstrate exactly how easy it is to spread malware through the App Store, and compromise the security of our data on the iPhone.

You would only have to launch the app once, and the hacker has access to your Safari’s history, last GPS position recorded , keyboard’s cache, email inbox, everything.

Seriot invites all iPhone users to be very careful what apps they install, in other words don’t just go on a app spree, because hiding the malicious code is extremely easy and the only solution for Apple would be to implement security profiles and ask each developer to indicate exactly what resources are used by the application.

“It turns out that the full Address Book is readable without the user’s knowledge or consent,” Seriot wrote in a white paper (PDF) on the subject.

As stated before, the Black Hat conference unites the best hackers around the world who are committed to pierce the systems in order to enable organizations to improve the safety of their devices. So we can only wait and see if Apple will accept the help and advice of such a community , because even though you might think something like this is far-fetched, it could happen to each and everyone of us at any given time just by downloading a simple app from the appstore. Maybe a “free for only 24h” app…

[via CNet]



LATEST ARTICLES



SUPPORT

We don't think that using an adblocker = piracy. That's simply not true. We use and recommend uBlock Origin.

However, as a small non-corporate website, we would appreciate it if you'd consider whitelisting FSM in your adblock of choice.

Alternatively, consider donating using the options below....

PayPal  
Monero (XMR) 43GnqUNJrTi9QyL7kEH8vM8pgWGCE6bjv1FSRipeNMM4TTeNnUVsRBb6MfMpQYxtLE7ReonxVVSXz2rFCEdW5H11LC3x73b
Bitcoin (BTC) 1Hfuq77gKKFJeNcq4EP4dQK3yDRWrFEwJR
Bitcoin Cash (BCH) qzmdm6e6q5wf2p6sxz2mst7cenz60newwc5m4e9js8
Ether (ETH) 0x5f02869278C24A6579d3820f52AD15936D6F9d69
Stellar (XLM) GDWT2QU2CI3GZ5XH5DTSU3IUAHZMTB6VQKKRHBYWS5YCCQOAG6OKG2OB
More content?  
Ads Blocker Image Powered by Code Help Pro

Congrats on using an adblocker. We mean it.

Please support us by disabling your AdBlocker or whitelist us.

Thank you! ❤️