Skip to main content

Apple iOS Security Flawed, Hacker Exploits Bug To Execute Unsigned Code

Apple has very strict norms in place for the developers who want their apps to be available on the App. Store. In fact, many are calling the approval process as the most stringent process ever. They are not only disapproving apps which are tasteless but also are meticulously going through the source codes of the apps to avoid any malicious features.

Even though such rigid and almost full proof methods and process are present, Charlie Miller, an Apple veteran hacker recently found out a bug which allows the apps to run malicious source codes which are not approved by Apple.

A demo video has also been released (see below), which shows Miller downloading a bugged app, namely Instastock, which he wrote and finally, successfully uploaded to the Apple App Store.

Through this bug the attacker can have complete access to the infected iDevice without the owner knowing anything about it. Miller showed few more things in the video like activating the iPhone vibrator and also downloading contact infomation.

The story was first reported by Forbes (opens in new tab) and according to the same report the bug will be presented by Miller at SysCan conference to be held in Taiwan.

Ravi Mandalia

Ravi Mandalla was ITProPortal's Sub Editor (and a contributing writer) for two years from 2011. Based in Ahmedabad, India, Ravi is now the owner and founder of Parity Media Pvt. Ltd., a news and media company, which specializes in online publishing, technology news and analysis, reviews, web site traffic growth, web site UI. Ravi lists his specialist subjects as: Enterprise, IT, Technology, Gadgets, Business, High Net Worth Individuals, Online Publishing, Advertising, Marketing, Social Media, News, Reviews, Audio, Video, and Multi-Media. He has also previously worked as Dy. Manager - IT Security at (n)Code Solutions.