[marcho11]

It would be interesting if...
A) someone tried this with BB10 and I wonder what the results would be.
B) Blackberry used this in their marketing strategy. We hear the word "security" all of the time, but I think the word "privacy" is something that resonates with people more. An app that can send tweets, SMS and emails is a big deal.

Thoughts?


Apple Store's malware problem exposed by researchers | TG Daily
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Apple Store's malware problem exposed by researchers
Posted August 17, 2013 - 08:50 by Emory Kale
Georgia Tech researchers released an app into the Apple Store that masked malware as generic app functions. The exploit creates concerns about the migration of PC viruses to mobile, Apple's app vetting procedures, and the general way we protect our phones for attacks.

A paper at the Usenix Conference in Washington DC last Friday gave a rundown of work done by researchers at Georgia Tech to expose the lack of testing done by Apple's that go into its store. This required that the researchers run through Apple's standard procedure to gain approval for their App, named Jekyll, that then went on to reassign its approved code to attack the phone. The accepted app was used by the researchers to attack their own phones and removed from the store to avoid any unwelcome attacks.

Apple claims to have dealt with some of the issues, mainly vulnerabilities in the OS, but will not discuss its approval process. How this translate into the real world: consumers PCs are constantly under threat and we do have some very rich anti-virus software vendors (McAfee, for example, cost Intel $7 billion). Businesses have IT departments that won't let you do anything to tick them off let alone download a malicious app.

The mobile market does have security vendors including McAfee and Symantec, PC stalwarts. But, there are issues with phone performance - as if there aren't any performance issues on PCs - and how well these services work.

In the meantime, we can knock Apple and they can just keep quiet on the subject. However, there is one thing that we know for sure, even its heyday, Apple never had to contend with this level of usage or third party support for its platform. Mobile makes Apple highly vulnerable, and traditionally, the company always hunkers down when it feels threatened. So, it will be interesting to see if it decides to change app approval processes, which are a little bit of mystery these days, anyhow.

As the original paper states in its conclusion:

In this paper, we presented a novel attack scheme that can be used by malicious iOS developers to evade the mandatory app review process. The key idea is to dynamically introduce new execution paths that do not exist in the app code as reviewed by Apple. Specifically, attackers can carefully plant a few artificial vulnerabilities in a benignapp, and then embed the malicious logic by decomposing it into disconnected code gadgets and hiding the gadgets throughout the app code space. Such a seemingly benign app can pass the app review because it neither violates any rules imposed by Apple nor contains functional malice. However, when a victim downloads and runs the app, attackers can remotely exploit the planted vulnerabilities and in turn assemble the gadgets to accomplish various malicious tasks.

We demonstrated the versatility of our attack via a broad range of malicious operations. We also discussed our newly discovered private APIs in iOS that can be abused to send email and SMS and post tweets without the user�s consent.

Our proof-of-concept malicious app was successfully published on App Store and tested on a controlled group of users. Even running inside the iOS sandbox, the app can stealthily post tweets, take photos, gather device identity information, send email and SMS, attack other apps, and even exploit kernel vulnerabilities.
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

[Elite1]

Moved to News & Rumors Forum for now.

Thanks for sharing. Very interesting article!

[Branta]

Hardly news... didn't Charlie Miller do something very similar about 12 months ago? And IIRC Real Malware (not POC tests) has been pulled from Playstore by Google on several documented occasions.

[marcho11]

Hardly news... didn't Charlie Miller do something very similar about 12 months ago? And IIRC Real Malware (not POC tests) has been pulled from Playstore by Google on several documented occasions.

Well, I guess that's kinda my point. There has been previous occurrences of this happening with Android. This is the first I've heard of anything with Apple. So it goes back to my original thoughts... what would happen with BB10?

[howarmat]

BB10 could have the exact same thing happen and it would be up to BB to take it our of the market

[erhan8]

Looks like BBRY testing is not flawless either. Maps is crashing for a lot of users. Its not a security issue this time, but obviously this bug was missed during testing. Makes one wonder about the actual testing process.

[FFR]

Looks like BBRY testing is not flawless either. Maps is crashing for a lot of users. Its not a security issue this time, but obviously this bug was missed during testing. Makes one wonder about the actual testing process.

I thought blackberry fired all thier testers

[Dunt Dunt Dunt]

I thought blackberry fired all thier testers

They had paid testers?

Posted via CB10