July should have been a great month for Apple, it was the month that was to see the much talked about (and hyped) 3G iPhone, MobileMe service and iPhone App store. Instead the company has been plagued with problems.
First there was the iPhone day (July 11th) launch which didn’t go as well as they had [...]
There’s been a lot of talk about the DNS vulnerability (CVE-2008-1447) discovered by Dan Kaminsky. The exploit, as detailed by the Common Vulnerabilities and Exposures Database, allows remote attackers to spoof DNS traffic enabling the poisoning of DNS caches in order to send systems to malicious websites. This greatly increases the risk of phishing attacks [...]
Just days after possible security vulnerabilities were reported in the iPhone, researchers at Independent Security EvaluatorsĀ in Baltimore have reported that a vulnerability in the Safari browser, used in the iPhone, could be exploited by rogue websites to gain full access to the phone. This could potentially provide full administrative access to the phone allowing access [...]
The Help Net Security site details some security vulnerabilities that exist in the current iPhone email and web client software. These include the email client not showing the URL of an embedded link, making phishing attacks easier, and the ability to get the phone to dial from a web link or Java script - although [...]
