Last-minute presentation: iPhone v3 malware vector

Marius van Oers McAfee

  download slides (PDF)

The Apple iPhone is very popular and is available globally. With the appearance of v3 of the iPhone OS many new powerful features have been added.

It was already possible to access the AddressBook from the Apple iPhone SDK. Now, with the recently released v3.0b, it is also possible to create (HTML) email messages, setting the Subject, setting the TO/CC/BCC recipients and it is also even possible to include file attachments.

It is now also possible to query the network configuration and/or if a certain target host would be reachable.

Malware might abuse those combined features.

This paper takes a look at what new features of iPhone OS 3 have been added and what possible new malware attack vectors could arise from it.



twitter.png
fb.png
linkedin.png
hackernews.png
reddit.png

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.