Malicious Websites Can Initiate Skype Calls On iOS

An anonymous reader writes "In this article, security researcher Nitesh Dhanjani shows how iOS insecurely launches third-party apps via registered URL handlers. Malicious websites can abuse this to launch arbitrary applications, such as getting the Skype.app to make arbitrary phone calls without asking the user. Dhanjani 'contacted Apple's security team to discuss this behavior, and their stance is that the onus is on the third-party applications (such as Skype in this case) to ask the user for authorization before performing the transaction.' He also discusses what developers of iOS apps can do to design their software securely and what Apple can do to help out."

Re:Once again proving...

[AnonymousClown]

Right, because this is clearly a security flaw you'll only find in Apple products.

The GP means is that Apple implied that their platform was more secure and the fanboys loved to point out that they were secure whenever a vulnerability was found in Windows - granted that was more MS hatred than anything.

The GP was only shoving it in everyone's faces that Apple products are not as secure as everyone believes. Of course, us old timers remember all the viruses that were spread disk to disk back in the 80s on the original Macs - so we've never believed the hype about the "safety" of Apple products.