For those of you who browse the iPhone App store.

[Cobster]

http://www.engadget.com/2011/11/07/charlie-millers-latest-ios-hack-gets-into-the-app-store-gets-h/

Be careful.

This isn't the first brush Apple's iOS platform has had with apps that exploit security holes to run unsigned code, but according to the developer of InstaStock, this may be the first to get a security researcher booted from its developer program. Charlie Miller shared his discovery with Forbes earlier today, showing off an app which successfully made it through Apple's approval process despite packing the ability to download and run unsigned code. That could allow a malicious app to access user data or activate hardware features remotely. Apple pulled the app after the findings were published, and according to Miller, revoked his developer access shortly afterward for what seems to be a clear violation of the guidelines.

 

[b4u]

http://www.engadget.com/2011/11/07/charlie-millers-latest-ios-hack-gets-into-the-app-store-gets-h/

Be careful.

This isn't the first brush Apple's iOS platform has had with apps that exploit security holes to run unsigned code, but according to the developer of InstaStock, this may be the first to get a security researcher booted from its developer program. Charlie Miller shared his discovery with Forbes earlier today, showing off an app which successfully made it through Apple's approval process despite packing the ability to download and run unsigned code. That could allow a malicious app to access user data or activate hardware features remotely. Apple pulled the app after the findings were published, and according to Miller, revoked his developer access shortly afterward for what seems to be a clear violation of the guidelines.

it's beyond me how that can even happen at Apple with all their safeguards, approvals, standards, rules etc etc but time and time again these things happen to them.

 

[Cobster]

Who cares, they have billions and billions, everything else doesn't matter.

Like Faux News, highest ratings (the most lies), nobody cares about the truth.

 

[Cobster]

http://www.huffingtonpost.com/2011/...r-security-flaw_n_1082497.html?ref=technology


lol @ Apple for firing a guy that showed their exploit, guess they're supposed to be a perfect flawless company?
Aw well, they should at least thank him for showing their weakness to avoid future drama, guess not.


But Apple said that while Miller was researching his latest discovery, he went too far.
He developed an application that he believed could download malware onto iPhones and iPads. To prove this, he disguised his app as a stock ticker program and got it approved for distribution in Apple's App Store.

Instead of thanking Miller for his work, Apple revoked his app developer license on Monday, saying it violated the developer agreement that forbid him to "hide, misrepresent or obscure" his app. He was also suspended for one year from Apple's developer program.