Slashdot Mirror

← Back to Stories (view on slashdot.org)

iPhone Jailbreak Modified Into CC Sniffing Malware

Posted by timothy on from the sniff-sniff-that's-very-sad dept.

chicksdaddy writes "In a presentation at the ToorCon Hacking Conference in San Diego on Saturday, Eric Monti, a Senior Researcher at Trustwave's Spider Labs, demonstrated how to turn the popular JailbreakMe Tool for iPhones and iPads into stealthy rootkit-style malware that can monitor voice and video activity or intercept sensitive data, such as credit card magnetic stripe data from an iPhone-based transaction."

4 of 120 comments (clear)

  1. Re:Yay! by sockman · · Score: 5, Funny

    There's an app for that.

  2. Re:How much was he paid by jo_ham · · Score: 5, Insightful

    Good God. Is the level of Apple hate so high that this has to be twisted into some sort of conspiracy about Apple?

    Of all places, slashdot should be the sort of place that understands the nature of security exploits - which is exactly what the jailbreak takes advantage of. Colour me *utterly unsurprised* that the same exploit (and any tools created to make use of it) can be changed to do things that you really don't want.

    Apple has nothing to do with this (apart from shipping software with a security flaw, but they are not unique in that respect).

  3. Re:Yay! by Anonymous Coward · · Score: 5, Informative

    >>> The iPhone can't get infected by simply browsing to a website.

    Well, there was a jailbreak to do just that before :)

    It may be patched, but I'm sure we'll see the likes of it or something similar again...

  4. It's not about hatred. by Anonymous Coward · · Score: 5, Insightful

    I don't think it's about people like the GP "hating" Apple. It's more like a complete lack of trust in Apple.

    These days, Apple is doing things that even Microsoft never stooped to doing. Microsoft never limited which programming languages developers could write applications in, for instance. In fact, with .NET, Microsoft has gone a long way towards vastly increasing the number of languages that can be used to create Windows applications.

    Then there are rumors about hidden APIs that Apple won't share with other developers, which is something that Microsoft was also accused of doing.

    Of course, then there are the numerous incidents with perfectly legitimate applications being rejected from the app store without any valid reason. The whole review process itself and the conditions associated with it are quite terrible. The whole process is about treating developers like shit.

    So it's easy to see how people may distrust Apple so much that they might even believe Apple is involved in shady practices designed to make Apple's claims stronger. If this is indeed the case, I would like to see more evidence to support the allegations made by people like the GP, but at least try to see where people like the GP are coming from.