Slashdot Mirror

← Back to Stories (view on slashdot.org)

Metasploit 3.7 Hacks Apple iOS

Posted by timothy on from the your-choice-of-options dept.

An anonymous reader writes "HD Moore is at it again. This time the famous open source security researcher has set his sights on exploiting Apple iOS. The Metasploit 3.7 release includes 35 new attack modules in total."

11 of 68 comments (clear)

  1. It's time by symbolset · · Score: 3, Insightful

    Now that Apple has garnered hacker interest, let's see how they do.

    --
    Help stamp out iliturcy.
    1. Re:It's time by RuiFerreira · · Score: 3

      In fact I'm curious about this too. The iphone/itunes link means that you can infect one and get the other as bonus. Additionally phones give more vectors of infection. You carry them around and connect them to several different networks. This has to be appealing for exploiters(tm).

    2. Re:It's time by mjwx · · Score: 3, Informative

      Because Apple hasn't attracted any interest in the past few years during its moderate rise in popularity?

      There, fixed that for you. Apple's have only gotten out of the 2% of computers in the last 2 or 3 years. Even now they struggle to get 5% worldwide.

      Now back onto topic, as a clued in /.er will always point out, malware is a business and business take a long time to react to changes in the marketplace. Malware attacks on phones are new, very new as there was
      A) Never a market for phone malware.
      B) Phones were never powerful enough to be useful.
      C) Too many different types of phones to make any attack worthwhile. Cost would have been way too high to get every single Symbian model out there.

      Take note of the last one. IOS drops that cost a lot, making malware on phones economically viable. Further more, IOS has proven itself to be quite vulnerable in the past, you do know that jailbreaking is done by exploiting a vulnerability dont you. Feel free to use the "jailbreak me" PDF vulnerability as an example. The only reason it hasn't been exploited is because there's more profit in Windows malware.

      Claiming you are automagically protected when you've never even been attacked is naive at best. It's like Lisa's (Simpson) tiger repelling rock, you cant use the fact that there are no tigers around the rock as proof of it's tiger repelling abilities.

      --
      Calling someone a "hater" only means you can not rationally rebut their argument.
  2. Metasploit 3.7 Hacks Apple iOS by Anonymous Coward · · Score: 5, Insightful

    No, it doesn't.
    It just has something to do after you broke in yourself now.

    1. Re:Metasploit 3.7 Hacks Apple iOS by clang_jangle · · Score: 4, Interesting
      FTFA:

      "The post-exploitation modules (post for short) are designed to run on systems that were compromised through another vector, whether its social engineering, a guessed password, or an unpatched vulnerability," HD Moore, Rapid7 chief security officer and Metasploit chief architect told InternetNews.com. "This module requires iTunes to be installed and for a backend to be accessible that has not been encrypted."

      Correct. Slashvertisements are annoying enough, at least they should be reasonably accurate. This one falls into the "sensationalist blurb" category.

      --
      Caveat Utilitor
  3. Sites, Sights by mikael_j · · Score: 3, Informative

    "Set his sites"? really?

    --
    Greylisting is to SMTP as NAT is to IPv4
    1. Re:Sites, Sights by Anonymous Coward · · Score: 5, Insightful

      Illiteracy != typo

      Please stop misusing the word typo; it means typographic error, not a sad ignorance of the language you are using to communicate.

    2. Re:Sites, Sights by bmo · · Score: 5, Funny

      Let's eat, Grandpa!
      Let's eat Grandpa!

      Grammar saves lives.

      --
      BMO

  4. Damn you! DAMN YOU TO HELL! by RichiH · · Score: 2

    Damn you for implying that timothy should proof-read submissions! Heretic!

  5. Not an iOS Exploit In And Of Itself by rsmith-mac · · Score: 4, Informative

    The Apple iOS Backup File Extraction module however is not an attack vector for directly exploiting iOS. Rather it is what is known as a post-exploitation module.

    "The post-exploitation modules (post for short) are designed to run on systems that were compromised through another vector, whether its social engineering, a guessed password, or an unpatched vulnerability," HD Moore, Rapid7 chief security officer and Metasploit chief architect told InternetNews.com. "This module requires iTunes to be installed and for a backend to be accessible that has not been encrypted."

    If I'm reading this right, the "exploit" is that Metasploit can now read unencrypted backups. I'm not sure how this is an exploit (the backup DB format isn't much of a secret), but there you go.

    If you want a real exploit, look into the "i0n1c" exploit being used to jailbreak phones on the latest OS.

    1. Re:Not an iOS Exploit In And Of Itself by joh · · Score: 2

      If you want a real exploit, look into the "i0n1c" exploit being used to jailbreak phones on the latest OS.

      Exactly. It's not that there are no iOS exploits out in the wild. As far as I know there's no remote exploit out there, though. You need physical access to the device or its backup (and then restore from that which requires physical access).