Apple To Patch iPhone Security Flaw [UPDATE] - InformationWeek

InformationWeek is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

IoT
IoT
Mobile
Commentary
7/31/2009
12:12 PM
Eric Ogren
Eric Ogren
Commentary
50%
50%

Apple To Patch iPhone Security Flaw [UPDATE]

According to U.K.-based network operator O2, Apple plans to distribute a patch for the iPhone's SMS security flaw as soon as this weekend. What's not clear is if the patch will be only for O2's customers or if Apple will update all iPhones. Update: iPhone OS 3.0.1 released to fix the flaw!

According to U.K.-based network operator O2, Apple plans to distribute a patch for the iPhone's SMS security flaw as soon as this weekend. What's not clear is if the patch will be only for O2's customers or if Apple will update all iPhones. Update: iPhone OS 3.0.1 released to fix the flaw!The iPhone is sold by network operator O2 in the U.K. An O2 spokesperson recently indicated that Apple will issue a patch via iTunes on Saturday, August 1. "We always recommend our customers update their iPhone with the latest software and this is no different. We will be communicating both through the [O2] Web site and proactively." In other words, O2 will get the word out to its iPhone customers that they should probably sync with iTunes to receive the patch.

The patch will plug a hole recently revealed by security expert Charlie Miller at the Black Hat conference. The problem allows ne'er-do-wells to send a text message with a single odd character to an iPhone and then gain control over some of the iPhone's functions. Miller explained that the exploit could lead to all sorts of actions, including taking control of the iPhone's camera, text messaging feature and address book.

The problem could be fixed with a minor system software update, or blocked by the network operators that offer the iPhone. Apple hasn't commented on the matter, nor has it confirmed that the patch is coming.

It would be pretty useless for Apple to only protect the iPhones that are sold by O2. Any patch that works for O2 would presumably work for all iPhones. Keep an eye on iTunes, perhaps the patch will be available for U.S. users on Saturday, too.

Update

This afternoon, Apple released iPhone OS 3.0.1 to all iPhone users through iTunes. The software update fixes the security flaw. It does not introduce any new features. Apple is encouraging all iPhone owners to update their software to remain protected.

We welcome your comments on this topic on our social media channels, or [contact us directly] with questions about the site.
Comment  | 
Print  | 
More Insights
Slideshows
Data Science: How the Pandemic Has Affected 10 Popular Jobs
Cynthia Harvey, Freelance Journalist, InformationWeek,  9/9/2020
Commentary
The Growing Security Priority for DevOps and Cloud Migration
Joao-Pierre S. Ruth, Senior Writer,  9/3/2020
Commentary
Dark Side of AI: How to Make Artificial Intelligence Trustworthy
Guest Commentary, Guest Commentary,  9/15/2020
White Papers
Register for InformationWeek Newsletters
2020 State of DevOps Report
2020 State of DevOps Report
Download this report today to learn more about the key tools and technologies being utilized, and how organizations deal with the cultural and process changes that DevOps brings. The report also examines the barriers organizations face, as well as the rewards from DevOps including faster application delivery, higher quality products, and quicker recovery from errors in production.
Video
Current Issue
IT Automation Transforms Network Management
In this special report we will examine the layers of automation and orchestration in IT operations, and how they can provide high availability and greater scale for modern applications and business demands.
Slideshows
Flash Poll