Germany warns of Apple security problem

Aug 04, 2010 By JUERGEN BAETZ , Associated Press Writer

(AP) -- Several versions of Apple's iPhone, iPad, and iPod Touch have potentially serious security problems, a German government agency said in an official warning Wednesday.

Apple's iOS operating system has "two critical weak points for which no patch exists," the Federal Office for Information Security said.

Opening a manipulated website or a PDF file could allow criminals to spy on passwords, planners, photos, text messages, e-mails and even listen in to phone conversations, the agency said in a statement.

"This allows potential attackers access to the complete system, including administrator rights," it added, urging users not to open PDF files on their mobile devices and only use trustworthy websites until Apple Inc. publishes a software update.

A spokesman for Apple in Germany, Georg Albrecht, told The Associated Press that the company is looking into the matter.

"We know these reports and are investigating them," he said, refusing to elaborate.

Although no attacks have been observed yet they were likely to appear soon, the German agency said.

"It has to be expected that hackers will soon use the weak spots for attacks," it said, noting that the devices' popularity could lead to attacks within the corporate world - possibly facilitating industrial espionage.

The security loophole became obvious after reports about a successful hacking of Apple's iOS operating system emerged on Monday, a spokeswoman for the agency, Katrin Alberts, said.

"Since then, information used in this hack is publicly available and can be used to infect an iOS device simply by opening a specially crafted PDF file," she told the AP.

The application targeted in such an attack, Alberts noted, is not Adobe Systems Inc.'s Acrobat reader which allows users to view PDF files, but Apple's internal application for opening those files on its iOS devices.

"We decided to communicate this proactively because a potential attacker may gain access to the entire device," Alberts said.

The federal agency, based in Bonn, said it was in contact with Apple on the issue. The warning relates to iPhones using iOS versions 3.1.2-4.0.1., iPads using iOS 3.2-3.2.1 and iPods Touch using iOS 3.1.2.-4.0.

The agency said it was possible but not clear whether older iOS or iPhone OS versions could also be affected.

With their mobile devices, users should not only stay clear of PDF files they get by e-mail, but also of those found via search engines, as they could be infected, Alberts said.

In the worst case, attackers could get hold of passwords, banking and other personal data. A user's contacts could also be used for sending spam e-mails, she said.

Explore further: Selfie sticks could bring jail time in South Korea

4.8 /5 (4 votes)
add to favorites email to friend print save as pdf

Related Stories

Feds to look at Apple policy on programming tools

May 04, 2010

(AP) -- Federal regulators plan to examine whether Apple Inc. is violating antitrust rules by requiring software developers to use Apple programming tools to create applications for the iPhone and iPad.

Apple iPhone to soon get long-sought multitasking

Apr 08, 2010

(AP) -- Apple Inc.'s iPhone and iPad devices will soon be able to run more than one program at a time, an ability that phones from Apple's rivals already offer and that iPhone owners have long sought.

Recommended for you

GoGlove wearable aims to control life's soundtracks

Nov 26, 2014

Technology creatives are seeing the key attraction in wearables as being in solutions that save the user from fumbling around with the phone to make app adjustments or changes, or from repeatedly taking it ...

Amazon cuts Fire phone price to ignite sales

Nov 26, 2014

Amazon on Wednesday slashed the price of Fire mobile phones that stalled after launch early this year, becoming a drag on the US online retail titan's bottom line.

Tech review: Another year, another iPad

Nov 25, 2014

Some years, Apple introduces a new version of a product and the world rejoices. Other years, the updates are more under the hood, but they still sell a ton.

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

boznz
Aug 04, 2010
This comment has been removed by a moderator.
Arikin
not rated yet Aug 05, 2010
You can thank the automatic PDF download feature of the safari browser.

If your iPhone is jailbroken install the PDF Warner from Cydia. Ironic isn't it.

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.