|
|
|
10 Things the iPhone Worm Teaches Us About Mobile Security
By: Don Reisinger
2009-11-09
Article Rating:  / 24
There are 31 user comments on this Network Security & Hardware story.
10 Things the iPhone Worm Teaches Us About Mobile Security (
Page 1 of 2 ) News Analysis: The iPhone is under attack by a relatively inconsequential worm that has found its way onto jailbroken iPhones in Australia. It might not affect too many users, but it does underscore the fact that the iPhone isn't as secure as people like to think.A new worm has affected some Australian iPhones. The worm gains root
access to a user's jailbroken phone and installs an image of Rick Astley (of
Rickrolling fame) as the default wallpaper. Security company Sophos said removing
the Ikee worm is extremely difficult, but it doesn't appear to do much more
than annoy the user who owns the affected device. It should also be noted that
so far the worm has only impacted folks in Australia.
But the iPhone
worm says quite a bit about the nature of mobile security. It also teaches
some valuable lessons to those who might believe that mobile phones are secure.
Reality dictates that no one is absolutely secure at any point. And although
Apple does its best to safeguard the security of its users, not even the
iPhone, jailbroken or not, can keep them entirely safe.
That's precisely why this small outbreak can teach
any mobile phone user a lot about mobile security and what kinds of dangers
exist.
1. One point against jailbreaking
Once Apple responds to the news about this worm, you can bet that the
company will make it abundantly clear that those who jailbreak their phones are
putting themselves at unnecessary risk. That's partly true. An iPhone that
hasn't been jailbroken by its user has all the security features in place,
potentially decreasing the chances of malicious hackers gaining access.
Jailbreaking might not be the best move.
2. Trust is a problem
Too often, users open files from others without considering the
ramifications. Whether an e-mail comes from a trusted source or from someone a
user doesn't know, caution must always be used when opening attachments. Does
that attachment relate to a prior discussion? Is it coming from a trusted source?
Answering those questions (and others) is important before opening an
attachment.
3. False sense of security
Unfortunately, too many people believe that because they're using an iPhone
and not a Windows PC, they are more likely to be secure. That's not necessarily
true. Although Apple has done a fine job of securing the iPhone and few issues
ever arise, that's far from an absolute guarantee. Users who feel that they can
do anything without worrying about the consequences could put
themselves in danger.
4. Mobile breaches are still bad
When users considers the potential security issues that could arise on a
mobile phone, some believe that the result won't be bad even if malware manages
to latch on to the device. After all, they reason, all the really
sensitive information is on a PC. Think again. If a user has his or her work
e-mail account tied to an iPhone, any and all messages will be sent to that device.
If malicious hackers find their way into the software, it won't take long for
them to access that sensitive data.
| | Reader Comments: 10 Things the iPhone Worm Teaches Us About Mobile Security | | >>> Post your comment now!
| | How do you get it?I wish the article would state exactly how a phone gets infected with this. I don't own an iPhone (or any cellphone for that matter), so guessing on... Posted At: 11-14-09
By: Richard S. | | | | | | Don't shoot the messenger!!Seems some people are being a little "retentive" regarding the article. RTT(Read the Title) "Things the iPhone TEACHES Us ABOUT MOBILE SECURITY". ... Posted At: 11-12-09
By: Mark S. | | | | | | "Completely secure OS"Despite the comments in here, the "completely secure" OS only exists in imaginations. In reality, there are degrees of security, and a variety of... Posted At: 11-12-09
By: Shane | | | | | | Moron "reporter" gets suedObviously this "moron" reporter and his "editor" shouldn't be working for eWeek or any technology magazine!. The article is slanderous and I am sure... Posted At: 11-11-09
By: Steve Z | | | | | | A user comment on this articleI am not a writer and I don't pretend to be! If you are trying to pass yourself off as a tech writer - you should at least be informed about what you... Posted At: 11-10-09
By: Adrian | | | | | | A user comment on this articleI am not a writer and I don't pretend to be! If you are trying to pass yourself off as a tech writer - you should at least be informed about what you... Posted At: 11-10-09
By: Adrian | | | | | | A user comment on this articleplease point out that users left their default passwords in place for OpenSSH, which is the same as not securing your wireless network by changing... Posted At: 11-10-09
By: dave | | | | | | >>> Post your comment now! | | | | | |
|
 |
|
|
�������x}kw6�DىCO-ȶĶ<=h)��S$l+�='7n��%?:m��@^(�
�$sW7-gL.\sfS;uA@
Y>%�>{�'()o��1m�n�f](� _h���oL|A�შ���:#:D�.Pk< �Z5�7�54o/ne0S�.ڎIQ>*֠��O��մH�m(�P8 p(ZB; ?*B4�m$oQT}:�XS=2tНS�[�BT
Kt/"(?F#&�s�?9; Ț�_h@Q5�0NK
<[��Sա*v�25vk>6^:�6
�FȅC�z$nRvn7o\ 2�5I2�Z@[��,�HmfCc`pmׇɩV�Tq3#}j�ݷt{�#�ԷF:S��S�C3Mu��N_CS�I'�6�qOF^_3'�@8:){ u"˭��Uֶ5�^q;ݙc�oE-2GlR� =�y7`BaC�J&5\_�-E&>�5
ؗ�Y͢@�e���ʆ}{ʾVWR\W}`[BUzEÝ|k47;W)EsvU !��mݹ��ඒ�k%m�s|uO}~A�6ox�9vtx/ȯ0�FD_j��QEVKi�/LZH���WP� u.jzQҏ[F-oZ%M�R?4,fϷ��3�+i�*H,GQD~6/NM㳣N��lL,!�V4*�V]?#;ˠjqszr|qӹ�wIAұ,O?��;Be}Y 4ӗ?�ReQ
So�,�o�0H�ˤd8[&r,�
?n\S@`hNXѬ[c�W M�Z!R)
u$ϙu(��5�>Hr
Q@a)#p?��%�i�8�@r5)6�K .wR�ާ�,|y"�b�4r�ݠQs>N+&o�#>��ef"`Q%M����
'�| 8Jn.b?
[�Z&gǨfmٜ%YWcL㑖�\z댛Vu.~hzmPqJ"0"- ]evb�ckꛛZϏRa�^TU���G��'&-d`q86acBݤ#}fE=�~A��A�ӧIz|JMk6m�uI=X�C#ʠ�:ڴ{\gV���4!>�&-a�^i1[W <ۋJ!PI�x�ZS�x�&z$tH h&r�kI�7.[A0?��
;
O`r]�ɝ�5��E0�ݻCi�`y1���y�j =�*~3`�=w}
�
�
�l�߃5�#~[-[�Z6x�O͙A }�C s\(L7^ ��2)%%E29 E�EK�i�@$� $h�-4`��r.��́l�bo(H�XVpD�*M'8ݱ;P+J�D�V�{T�Kh+�K@f:32YIFMf�
X�*ȉ#�o"0�9X����
,gZ
X�k%漭UKZ%m�1*�МC{gؕ~EQ�m��ҧF(+?_0�w4�,�T�8#_Όp�?[~8.� 7R��iBI1?,xPǷG#˰`��P^!͘;eL���
nu]ޖgK<'*J^r_O�M)Hj�`>T*�7vZA\M��1�t�ϏE=kb�$`~��
Oڹe��K���(�)em�*dʫ�?v=@�kQDz{fLO��lc�p6X!6DM A 'V���x��ZW�0 0q�ڠ@XĞ=�TW酥kϧ;�Ңw^^Sv˖?~F|4^ۄ#�V!0\ zD30`,�e!{W+�hAdX(%UMp?O~�6��=2eX]2X>rGmA�utn\I�C�5؉b���]D��z�m4dH���A�Db�����$>���\R`�t>*�e$X6) 5*�iMy�m"`8�+�Œb:�uXQH =j|{e|h3<2
Y
���ә^JZ�qthUU�jVC�gG+,(xW�E�bI�xԀA��_�ԁEo|/Ne6Z/Pz;�ܮ[K9s3/'x '0h'0^˒V`|�V_�a>]HkK��2)<:�a��r]TՑn
OQ��GA.C{��Mt��Aj[�,@
�ܠY�ai}^.y~R%'��
_k5���"���9^R˶(SN�@�(8�:�-,�H+���?�N#�1hh
05�-�dpCUjʾ_ٳIW�c�g)h�"RkF&:�FdHCtΈ+6RNT:)A'�8՟o�F* ϛ=GD1�*@7Z)��
�e�4
B+bI�V ]j2�,�>�s)~7�'zER7ƹ<�sƇ~�ڷB�YHjF�H_'uG ��s?n2165"^ >tU*`|,4̩,B�flĤC}g]a+w>�Se6e'ß=~��]O U�<@�n<��"w�>sԳйdNkl s�ƻ~rn�f@�ƫ�h>
��Wk�i>~5O}rv'<�
hr�͵m��7f����" N)�tc{qO��f?�}T*JZ��(*+HA:e�rz�埍8j�KC�车eѓe�O*��lWJ_�0]P���X9H(P+ Yr>Gɷo��njC��SXp|
ޠ[PH�c$ $"z��⨵J3)=2��a7ZTe��3�991u?|{qiwo�zՕ ��[�/I6�\S�0:;_�ݘ`3at��-4�Qԕ|w9�ƶO}u9rLЫ{;At;�:(Cr|<���z{R���-�}U\q@*��-|~<:�m~1��LAIP
��4�#5?$!&}ׇu{5geUsQFۧ(F@q�F�usѺع�_>w!CrlK^'+֓�!� y�KBV��=ut6i)q�f�m2XG<2u\8$��ST8 m̀@H�c^9`B5c-Mg"S�E0��u0aUxy~�U���kq� �Ã:�X��AQ����5@�+JFtzW/a�{mE�
����bT� _RF�I$Q#=-#�hI{D�"G0��^�ί([ⷚoWȘI�GD_q-5�'=?EU[k't>�!9����4rYA$K�2c�]Z�qm}
zs@&iR'D[3pq*hKhwI�e�ޜ,Hu9Ym@yjZӽM3%[/G'�X�;[
.VH�_8_`w["�,G7��<�mt�!}6PR4jշΫV~@���R!\8)X�zH0QH倜�b}~XU߯Il;u,�#�(���:#7:�Nj�/9"G,&@Q��~
ܳ,�:];@���_��z|oIM2G�z1�7nL�q;��Z9z�}
H{O{,ik�n;�;��_坠P.FZĩUrcc��zc��l3�Ljǥ̷rt�?K.}:IK�09j~%H@2oth�Ck�7y�EO>O�4wX�]{gNE�Vw�N{},d�a�}?H+F��i�s(!Oh�4vdLc!I )VԺ57`ʜ9%'+xr42��Ӣ(�o��P2QtIK�JG3`̾�qKw�b��c8w�B�g���w5GGpSxw6{e�QJW=�q-@�kjejR�=3����xL 6;x4
:l0̠@ b@V��ջ�R.B)����P`G
�܍1J��"ic$H)Yų4
M� ��_5�6���Z7:a6
*|b�Zy☖a�8\}5�߈:6"Y1!IfM1XP|=�ߌ9s{C�4��T௩7/7�__B�!]9_h3�[QO(^ h�>�}�"�t�(u��Kt[:�F�,ߊyu2�Z.?�DI#OF�{p|�K]q�.�Zu/tL|�G�S̩|"\k<\f�oCן���ə�x�,��Rұ`U��
��ۺ0d]Nk˩SJ�OGTa�m'ǻǏ�#];D)�YmB(��ͦCNu�f�rOQnsj8N]6 v�-LCi�ke�ȹ]Ý/�1�B
�^xa\W&b
NQ=(}dIXU'\:A/i!6
렳,+&r|K}w6kB{�̗@%-X�t['�6|p,vYDD��-~�o�U�{O)~lOӚE,�I3NL:W)[Rjj\K��%4-)]y%.<튣��:xqUIz?A,
�b(u�m[R/$E,IƐ~քc]: K�ɘ vyBLF�K�
-nF&
O�H�!h 6Á�D\qTYpa*�)kj}j>8`?n�5[4�^;�ug=P!�`@�]Ev��}u�&I%ړP�y'P�?'b[HP1T= LF~ь�}�Hx70{{K��OZ)WebYKz�1@��.IC?/BD6�o�є\�Ƽ8�U[`wUDn�Zy>�C'ڋӉH2�,ʆu1�B�ZCw�Jݞ�UJ9���%Bx�fH��ot�
[�]'dUz)`0$�MH *hKؖpcV
'4bE�ܡ�OOj9Zf ]��RSZt-�.˱B�倀���&h��"ç7@MIt�8~(A�kÂK\9'c��gd}�@:�C��O\dӎ-GJEx,:�zYK�fS-��y02I XHCh`@M):],a�U@1퀥N}wX@@U*9�W`eyY �˽,O�`ߖ�f"<
�'�S7+�_I ,͆Q#ܑ��:sP5��3<�$
pXoY? ')վ)
}M]{qvj`��T:B@"ξn[:`;HW`&@%�[�0T�5o�GB���08� ���oK=�;�b�_ܞ��3eT_T�GK�oooo_/_N˻Ezt�`H�JK��q^>L��MB��Ӿ�dTa�i~hieyQ2{ 5B
W�=k0<��`5]e<>���V�O��D[ KV^3-��H�b5�kKąuQko@"ZcKc�7�1Cr�kmv�Z=Lx*1C^b�7wBp�!�"�AL
-!`oA�ӯDS1|�\5) BO`eZf�)KŹ\e
�:Q)8`GXҩE�HC"���c#BV�hnS{C*;֕O=�*PBu`x�?A�@X"�!�H*|�y;�XX�*�]
|+*}`�Tsw;8>2k�q�]^�v!�&#�$m_UUm`ؠ3>��%(`0hoD ZuᶘhnƆbNOv�؆SoN�k�0V%^�a:q'
�<_�xD�i��,ȓ
Fܸ:wi#uuuu|^RU߶1,qV�7�1ĞaV�ݖ��'e]�{611u8_E�xh
�P'#BZ��WELԉĝ&
�l..ZO'鸸U�!�p0oHd[U}�P�0l|ĸ]H�n�3�sJ171r�tY9hp��i%˱8�D8 "�:x��Cs�ނ�PU�'l
�Z0[ċ3#[O1B8�f�p(Ry��Π<�P�vH5m>6�0/�zR%^/z+"bq=RJte��jb�fKT4|]b45 >5�7f��Y~�S(ܘ`JA�Ķ�@������)E�|67}̲���
2�tG�ZZ(i�Ȁ�[u�Q�b�CwZhl|e+&N沃`;Pb`cwP�QgB��k q<*A�+EءW&Hm#nA'�Y,gt:s�NWDnJ2\kV*^D~j�$Z$�u,u{
sđ뛋uN�cP3,9)45�xfV棭j-FdG0�,2; �D'�蜜X�p,�E�"ytT>#RF̯R߇q�>U7X�`DAPtb
F�|Ɍֲ:m�FA�&�_cL~c
�1��"x�x�bj bF�gfɝ7�g��X�۽[!VWv�r�e�*�(4�;m�m[Jo>co+I c�]r�t�w%eZS{�ٓR8�G���@��`m̼DGR�S߀}o cd2z�ވ�%:�pb�X��Z`O�i$�}b 铓"vFf!F�T1
E5�dM�CsN.7v߾U Cv`P^[H�{�/u�.nMas>z4�l8�x{Sc�~s�CRO⺢�t�@�.a�]œ�:q0�raqn�o8gkH0ג r)؇c*|k47\_}ae�1�`8�*pgj9T�K$L�2�@�:
x�E
��Aߟ{=>I1%
aN���r���!-1��II!5�Q�"�5,ǰgL#|-�Q�(1^�G0�cc��Z|E,�{{GǙ;fSZ,�Wsv4
5�M�o���
)n}>eЌLjV}Qu�xS�S+S~
ˏ[@.wsʑO��'c(?^_~
9Gǜ�֗u
ͳI9)ureN9_z//Pe}9?ρ�ڮy3?�0_�<ߋ�^�~.rs���E�}^�}^'e/?C3(?)�-�/ra~/s�2.a.s��# _9
*>~s�匿�匿�ϡ?�?�}}ʡP9�9g|�sw�7y@79{��wCi]'I9z�[9|ֺ
۩�QNy<ʡJ�E5ৼrXB]Cy<*PC/nvs
ث�V=ןbM�exG,D<�mcLkl�ȁ>ɺb>Y݉7�xg�P�[ЙqeޢD���F��E5x;|�0�-0�eZ 7㌰6�N�{�
CחUc=tfF}yP4l�KeB�'hZc(
fZ���g8
a箩-g�ӂO�NW鍆�.h
�;cer�ö0A
l(U˚VVk[*j���f{DD�LH�R*R'Ӏ�e`_)�&�K��<3
��.=M^ed fMȡ�!�pC�fJ�C#DK(��x�>�[xѳc6D�~�_,mBfH��6T<�'u~�m'&�\ʠaC7ao/XbKZ;�cp��\;�l�=2 g ?qW �d`6gG�|םۈZ�ufpɯ�R�O^���ێ�~
�fL~ƮD.'�[l�,��)1 {��;KH6Nhp�@y �0t['�Sr�%�\��ktE�Eב�E$&J1'YX�sJ�D!-\,p>1|"�,r��f[��1*�{ԟ#1PXY/�u[8�:\5�&z�U Th<�Sϫo�1E![I%�ަDmÜ�z)LJ)@BoE)R%:�Tun�wHmgl�"�l%E�a'�_!�TL�,sD�<�>K:#S3Q)jkA/?tI3۱x쥽%�}Yq ��v.}�X#U:.~=I��T~7)V��\wц|7(6؋|%Og
Ͽa�HO)t��&I
cQ�'1U ���,ڎN-Gw��U|ٲs�9ebV)qme�Gf�ӧ[-[@#5E`1v`eh��
�nخ;O�q^'��3>&�rx{Ko/=��cHPVWݜ얏���Xo|
8j�O.�hl�}�π XsCQ%7`
�}ݟ-H�ˍt�d_$%�\!dW<�l<3@WD0;"6�����ic.#sE����X,8/� kuf㿞�;�8]�r$c�<[^Eҵ<�oc3��)�?;���<�v;
fC
&+_2uE�>�v�/-�G�J~�Q.u�7tle��@�JҾ�� �m73�T|
�%` GY�U`Z+r
8ǩk[Vmx�� �}�u+y!)��0�: ˟]zTIٶ�7(G,cݴ�Qa[:�6
�n
۲
u�y˷DM\7-'my�#�Q1W)?Il}X�<���KW=?5z��l�3Gi:9Y�}�#s!?²x',.c�Xͼ*?҂g'
Q\�F$30(�y�
l�+���m5'0X�1+ ���R9(t>
cJ\g'�ۂ�~�Ӎk[Ɯ���˱Y)���iV~\ʙˮ
ֺW6x�ozc|�[wD,5ba:(�/z��0��
�LMkÔpai�#fS�S��3�{߂ �i�x�v�4<@Tf�_E@�G7dyUĄ�f�ٵBZJGnr�m�mc{Ji�F��"5cP!X�]-nB@:� ��εx C��,$��ˋ�}��cyx Uf )VS/�̀.ȟ8�3}E.t�ʢ^w?]HQE�yiNђ�u',��!ջjt.?+e=;`on��3�g�>p7*�Ѡ,jU
z' l5mEgl(3��W'J^R��z"f/F)SذM�*i2�9J{)
qU˕bm�TʩIrlǝlr n!%c��]&ŮM�v�bes� Q+��
|
Network Security & Hardware 
