Security Holes Found In RIM BlackBerry Service

An anonymous reader writes "Researchers have found several security holes in Blackberry handheld devices and the servers that power them, according to a story at Washingtonpost.com. The research points out serious flaws in the BlackBerry server, which could be exploited by convincing Blackberry handheld users to click on an image file attachment. From the article: 'Lindner's slides from his presentation -- which he agreed not to release until RIM has fully fixed this problem -- show that the Blackberry server which manages all of the encryption keys needed to unscramble e-mail traffic to and from all Blackberry devices registered on the network stores them on a Microsoft SQL database server in plain, unencrypted text. Lindner found that by convincing a Blackberry user to click on a special image attachment, that handheld device could be made to pass on malicious code to the Blackberry server, which could then be taken over and used to intercept e-mails or as a staging point for other attacks within the network.'"

Ha!

[JonN]

That will teach them no good thiefs to use patented technology! Never know what you're gonna get

*watches the karma drop* btw I'm a RIM supporter

RIMjob

[digitaldc]

when I know they are hiring newbs from U of W that don't know their ass from a hole in the ground, this sort of thing is not a surprise to me!

Apparently they don't know their ass from a hole in the security, either.

Job at rim?

[The_Rippa]

Who in their right mind would store that info unencrypted? It must be pretty easy these days to get a rim job.

PATENT INFRINGEMENT!

[SmurfButcher+Bob]

Yep, sorry guys... this flaw is patented. Pay up!

Heh, I wasn't actually going to post that, but I had a thought... if we patented the dumbest mistakes out there (buffer overflows, etc)... what company would want to prove "prior art" ?