Apple iOS Security Defeated By Sneaky App - InformationWeek
IoT
IoT
Comments
Apple iOS Security Defeated By Sneaky App
Newest First  |  Oldest First  |  Threaded View
mstanislav
50%
50%
mstanislav,
User Rank: Apprentice
8/20/2013 | 3:38:19 PM
re: Apple iOS Security Defeated By Sneaky App
App stores are going to continually up their level of interrogation to stay ahead of malware. In a similar way that PC users are still fighting malware, mobile platforms also have to make certain assumptions to detect malware-laden apps before they get to a consumer. While still an uphill battle, the control that Apple and Google have over the actual app stores (to varying degrees, of course) allows for a fighting chance, at least. There's a minimum set of hurdles that an attacker has to jump over in order to have an app pass through their direct stores.

This research has some commonalities to the work Jon Oberheide and Charlie Miller did last year regarding Android's Bouncer (https://blog.duosecurity.com/2.... In that research they determined how Google was flagging a "bad app" and were able to circumvent that process by hiding the malware functionality when tested by Bouncer but not on a real device that would actually matter to an attacker. Overall, both pieces of research have huge implications for strengthening the security programs at Google and Apple.
John K Sellers
50%
50%
John K Sellers,
User Rank: Apprentice
8/19/2013 | 1:23:49 AM
re: Apple iOS Security Defeated By Sneaky App
It cuts the other way too. A couple of years ago, the Apple Store removed a children's programming App called Scratch that was written in Squeak Smalltalk.

It was a wonderful App and should definitely be in the Apple Store.

This especially true since Apple has a long history with its roots close to Smalltalk. One of their first computers had an Object Oriented OS that drew heavily on the Smalltalk paradigm.

Over 40 years ago "Alan Kay invented the idea of a lightweight tablet computer using Smalltalk." We would all be better off if that had succeeded.

I think that it is fine to have tablets like the iPad, but because of security concerns, the iPad throws "out the baby with the dishwater". It loses a lot of its potential by being so exclusive. But that is what happens when one is more interested in profits than real progress as almost all companies are.

With exactly the right kind of work, it would take more to do the job than any company has been willing to do, but the company that comes along and actually does the real job would leave all the pervasive pretenders in the dust in terms of making real progress AND money.
SamsDroid
50%
50%
SamsDroid,
User Rank: Apprentice
8/17/2013 | 7:27:28 PM
re: Apple iOS Security Defeated By Sneaky App
Android fixes it before it happens.... That's the difference.
SamsDroid
50%
50%
SamsDroid,
User Rank: Apprentice
8/17/2013 | 7:26:49 PM
re: Apple iOS Security Defeated By Sneaky App
iOS sucks. This would never happen on Android.
melgross
50%
50%
melgross,
User Rank: Ninja
8/17/2013 | 5:50:32 PM
re: Apple iOS Security Defeated By Sneaky App
Apple has stated that they've already fixed the loophole.


How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
2017 State of the Cloud Report
As the use of public cloud becomes a given, IT leaders must navigate the transition and advocate for management tools or architectures that allow them to realize the benefits they seek. Download this report to explore the issues and how to best leverage the cloud moving forward.
Video
Slideshows
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of November 6, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll