RE: RE: [Full-disclosure] iPhone has a built-in spyware module?

[Blanchard_Michael () emc com]

Yup, I agree.  I also feel that this sure sounds like the normal built in feature of the phone to remotely backup 
phone's data.
 
  Reading of the whitepaper is certainly needed to know for sure what they found.
 
  Mike B
 
Michael P. Blanchard 
Antivirus / Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
Office of Information Security & Risk Management 
EMC ² Corporation 
4400 Computer Dr. 
Westboro, MA 01580 

 

________________________________

From: ahmad.elkhatib () gmail com [mailto:ahmad.elkhatib () gmail com] On Behalf Of Ahmad Elkhatib
Sent: Thursday, July 19, 2007 1:43 PM
To: Blanchard, Michael (InfoSec)
Cc: Larry () larryseltzer com; funsec () linuxbox org
Subject: Re: [funsec] RE: [Full-disclosure] iPhone has a built-in spyware module?


> From the sounds of it it seems like backup and restore functionality of your phone which is being offered by carriers 
> as a value added service to backup all your contacts,calendar items, tasks etc over the air. So it might have been 
> that the iphone has that function, but yeah we would need more details to find out whether it was implemented 
> insecurely or not. 



On 7/19/07, Blanchard_Michael () emc com <Blanchard_Michael () emc com > wrote: 

        Ok, who has this whitepaper?  I know someone does on this list!  Cough it up :-) 
        
          Seriously, I would like to read that whitepaper if anyone has it.  I seriously doubt that it's true, but it 
really gives me that conspiracy itch that MUST be scratched :-)
        
          thanks all!
            Mike B
        
        
        Michael P. Blanchard
        Antivirus / Security Engineer, CISSP, GCIH, CCSA-NGX, MCSE
        Office of Information Security & Risk Management
        EMC ² Corporation
        4400 Computer Dr.
        Westboro, MA 01580
        
        
        -----Original Message-----
        From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org] On Behalf Of Larry Seltzer 
        Sent: Wednesday, July 18, 2007 7:56 PM
        To: funsec () linuxbox org
        Subject: [funsec] RE: [Full-disclosure] iPhone has a built-in spyware module?
        
        (Cross-posting from F-D. I hate posting on F-D and getting a dozen "out 
        of office" and "this guy doesn't work here anymore" responses for my
        trouble.)
        
        >>http://vsiphone.blogspot.com/2007/07/iphone-has-built-in-spyware-modul 
        e.html
        
        "Russian hackers found a built-in function which sends all data from an
        iPhone to a specified web-server. Contacts from a phonebook, SMS, recent
        calls, history of Safari browser - all your personal information can be 
        stolen."
        
        Does anyone out there believe this? It's a bit ham-handed for Apple.
        
        Larry Seltzer
        eWEEK.com Security Center Editor
        http://security.eweek.com/ 
        http://blogs.eweek.com/cheap_hack/
        Contributing Editor, PC Magazine
        larryseltzer () ziffdavis com
        
        _______________________________________________ 
        Fun and Misc security discussion for OT posts.
        https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
        Note: funsec is a public and open mailing list. 
        
        
        _______________________________________________
        Fun and Misc security discussion for OT posts.
        https://linuxbox.org/cgi-bin/mailman/listinfo/funsec 
        Note: funsec is a public and open mailing list.
        


_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.