Any iPhone can be hacked with a modified charger in under a minute (opens in new tab)

(geek.com)

39 pointsjvanderwal13y ago27 comments

27 comments

14 comments · 4 top-level

kyrias13y ago· 5 in thread

With hardware access all bets are off.

ef413y ago

Yeah, but I think this is a bit worse than that.

If a faulty ethernet driver lets you compromise a laptop just by plugging it into a malicious network, that's a legitimate vulnerability, not really a case of "well, they had physical access".

USB may be customarily treated as more trusted than ethernet, but there are clearly still scenarios where untrusted people may be able to send you USB messages.

bigiain13y ago

"Here, mind if I plug my video camera into your Firewire port to charge (and trawl through your ram and swapspace looking for any usernames and passwords)?"

cheald13y ago

I dunno - with USB debugging turned off, you can't do much to an Android device even if you can plug an arbitrary device into its USB port. There's a reason I make sure it's turned off every time I leave the house!

ephemient13y ago

On stock JB, even with USB debugging turned on, it's been tightened down. http://android-developers.blogspot.com/2013/02/security-enha...

randyrand13y ago

To some extent, sure, but we don't have to make it easy to get root access. Encryption on hard drives, removing the USB auto-play feature from windows, having to enter the PIN on a WP7 device before being able to deploy a developer app over USB, ect, are such examples that can make it considerably harder to get root access despite having the physical machine.

jamesaguilar13y ago· 4 in thread

Unfortunately, since it is a university research group, they probably disclosed responsibly and whatever defect allowed this form of jailbreaking will soon be fixed. That means that it's unlikely that people will have a perennial, easy jailbreak going forward from this source.

nhm13y ago

>Unfortunately, since it is a university research group, they probably disclosed responsibly and whatever defect allowed this form of jailbreaking will soon be fixed.

I wouldn't consider that unfortunate. Responsible disclosure should be praised!

jamesaguilar13y ago

In almost all circumstances, I agree. However, the one circumstance I don't agree is when systems are being kept secure mainly against their own users. In this case, insecure systems are preferable (as a user), especially when the attack vector is likely to only be triggered intentionally. Since I don't plug my iphone into random USB cables pretty much ever, the only likely case where this vulnerability could be exploited against my phone is if I chose to jailbreak it.

eridius13y ago

Please stop speaking in generics. I assure you that, for the vast majority of iPhone users, insecure systems are not preferable.

3 more replies

anextio13y ago

> insecure systems are preferable (as a user)

No they’re not. Religious issues should never come before security.

1 more reply

djbender13y ago· 1 in thread

Hardware access is root access.

cookingrobot13y ago

That rule of thumb usually refers to having unfettered access to the hardware - to be able to crack it open, snoop on internal signals etc.

In this case the problem is that the dock is expected to be a safe interface (untrusted), when it actually isn't. For ex, people would be surprised if their computer could be hacked by plugging it into a malicious power socket. And likewise they'll be surprised if they find out their phone can be hacked by putting it on an alarm-clock ipod dock in their hotel room.

Centigonal13y ago

It's interesting how the progress of iPhone hacks is mirroring that of the PSP homebrew scene 5 or 6 years ago. First there were a bunch of easy to use vulnerabilities or hidden features in apps (like the hidden browser in WipeOut)that provided functions that were offered natively in future versions of the OS. Then the hacking scene moved to OS vulnerabilities. As Sony locked down the platform tighter and tighter, people moved to hardware, using modded batteries to boot the PSP in some kind of troubleshooting mode.

Eventually, both Sony and the hackers kind of lost interest, I think -- I haven't kept up with things, TBH. That said, Sony had the PS Vita to move to, but I don't see the iPhone changing significantly in the next few years (risky words, I know, but I'll be happy if proven wrong).

j / k navigate · click thread line to collapse