Category: Telecom


Apple patches serious security holes in iOS devices

Filed under: 3G, 4G, Apple, Applications, Cybersecurity, Exploit, iOS, iPhone, iPhone Repair, Jailbreak, Repairs, Security, Software, Technology, Telecom, Unlocking, Wireless by Ryan Boese — Leave a comment
May 7, 2012

Apple has shipped a high-priority iOS update to fix multiple security holes affecting the browser used on iPhones, iPads and iPod Touch devices.

The iOS 5.1.1 update fixes four separate vulnerabilities, including one that could be used to take complete control of an affected device.

Here’s the skinny of this batch of updates:

  • A URL spoofing issue existed in Safari. This could be used in a malicious web site to direct the user to a spoofed site that visually appeared to be a legitimate domain. This issue is addressed through improved URL handling. This issue does not affect OS X systems.
  • Multiple security holes in the open-source WebKit rendering engine. These could lead to cross-site scripting attacks from maliciously crafted web sites. These vulnerabilities were used during Google’s Pwnium contest at this year’s CanSecWest conference.
  • A memory corruption issue in WebKit. Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution. This issue was discovered and reported by Google’s security team.

This patch is only available via iTunes. To check that the iPhone, iPod touch, or iPad has been updated:

  1. Navigate to Settings
  2. Select General
  3. Select About. The version after applying this update will be “5.1.1″.

Ryan says: As always, do not update to 5.1.1 if your iPhone is unlocked or jailbroken already or if you plan doing this in the future.

Tags: , , , , , , , , , , , , , , , , , , ,
Comment

New iPhone app enables self-destructing sext messages

Filed under: 3G, 4G, Applications, Cybersecurity, Exploit, Internet, iPhone, Mobile, Software, Technology, Telecom, Wireless by Ryan Boese — Leave a comment
May 7, 2012

Sexting, or the act of sending sexually explicit messages or photographs between mobile phones, continues to grow increasingly popular. Mobile users often have private photos posted to the Internet without their permission, and politicians and celebrities alike have taken explicit photos that using mobile devices that were eventually leaked. Unfortunately for Anthony Weiner, the congressman wasn’t aware of an iPhone app by the name of Snapchat. The program is available for free in Apple’s App Store and allows users to send photos that self-destruct within 1-10 seconds. Images cannot be saved in the app, and Snapchat will even notify users if the recipient takes a screenshot — though there is no way to prevent screenshots from being taken, of course. It should also be noted that images are stored on the developer’s servers, and while the company “attempt(s) to delete image data as soon as possible after the message is transmitted,” it cannot guarantee messages will always be deleted. “Messages, therefore, are sent at the risk of the user,” the company’s privacy policy warns.

Source: Forbes / BGR

Tags: , , , , , , , , , , , , , , ,
Comment

Apple wins ‘device destroying’ injunction against Motorola

Filed under: Android, Apple, Applications, Google, iPhone, Mobile, Motorola, OS, Repairs, Software, Technology, Telecom, Wireless by Ryan Boese — Leave a comment
March 2, 2012

Apple, which continues to disrupt the mobile space with its patent litigation, has successfully won a case against rival Motorola, in which a photo management patent was infringed.

The German court ruling said that the “zoomed in” mode for viewing photos on Motorola’s Android handsets infringed the Apple-held patent, but not the “zoomed out” mode. EU Patent No. EP2059868 originally derived from another patent, which allowed photos to ‘bounce’ when they are over-scrolled; because people will attempt to claim anything nowadays.

FOSS Patents author Florian Mueller understands that Apple could order the destruction of devices if it chooses so.

“If Apple enforces the ruling, it can even require Motorola to destroy any infringing products in its possession in Germany and recall, at MMI’s expense, any infringing products from German retailers in order to have them destroyed as well.”

Having said that, Motorola played down the fears that devices could be subject to such ghastly ends by saying that doesn’t expect the ruling to affect future sales, and that it has “implemented a new way to view photos”, reports Bloomberg with a spelling mistake.

While Motorola can continue selling the devices, it did not comment on Mueller’s comments that would lead to ultimately the mass graves of Motorola phones. Motorola has said that it has already sought a workaround to prevent its smartphones from infringing Apple’s patent, thus rendering the court’s judgement effectively useless.

It appears from this, that not only is Germany a hot bed of patent activity, litigation — and frankly, trolling — but while one company sues another, the defendant in each case is more often than not forced to simply modify the software of the phones.

If you thought the patent wars were all in Apple’s favour, you would be wrong. It was just over a week ago when Apple pulled the plug on its iCloud and MobileMe push email feature within the borders of Germany, after Motorola won a patent claim of its own.

Source: ZDNet

Tags: , , , , , , , , , , , , , , , , , ,
Comment

HTC tool unlocks bootloader on some Android devices

Filed under: Android, Applications, Bootloader, HTC, Technology, Telecom, Unlocking, Wireless by Ryan Boese — Leave a comment
December 31, 2011

Last summer, phone maker HTC raised eyebrows by announcing it would enable users to unlock the bootloaders on some of its most popular phones, enabling technically-inclined customers to root the devices and install custom operating systems or, really, any darn thing they like. Now, HTC has come through, releasing a tool to unload the bootloader on phones launched after September 2011. HTC also says it is working to make the bootloader operational on phones launched before September 2011.

The company has offered a complete list of devices currently supported by the tool. HTC notes some devices may never be supported by the unlock tool due to operator restrictions.

HTC had previously gone to some lengths to lock down bootloaders on its Android devices—partly as a defense against malicious software—but reversed course in the face of strong feedback from technically-inclined customers who feel that the ability to install their own custom operating systems is a key element of Android’s “openness.” (HTC says it was “overwhelmed by the enthusiasm of our fans.”) After all, what’s the point of an operating system being available as open source if programmers can’t download it and install it on devices?

For ambitious users, unlocking the bootloader may be a quick way to get Android 4 Ice Cream Sandwich onto HTC devices without waiting for official updates.

HTC is clear that it not officially supporting devices that have been unlocked with the bootloader, merely allowing users to unlock their devices at their own risk—and may mean they’re no longer covered by device warranties. HTC also notes that it’s possible unlocking devices may have unintended consequences, including overheating.

Ryan:  Ultimately, the main reason why I sold my HTC Desire Z and went back to BlackBerry was because of the buggy HTC Sense interface.  I am glad HTC is giving its customers more choice by allowing them to use a bootloader, “at their own risk” of course.

Source: DigitalTrends

Tags: , , , , , , , , , , , , , , , ,
Comment

Any GSM phone vulnerable to new scam: researcher

Filed under: Cybersecurity, Exploit, GSM, Hackers, Mobile, Security, Tablets, Technology, Telecom, Wireless by Ryan Boese — 3 Comments
December 27, 2011

A well-known expert on mobile phone security says a vulnerability in a widely used wireless technology could allow hackers to gain remote control of phones, instructing them to send text messages or make calls.

They could use the vulnerability in the GSM network technology, which is used by billions of people in about 80 percent of the global mobile market, to make calls or send texts to expensive, premium phone and messaging services in scams, said Karsten Nohl, head of Germany’s Security Research Labs.

Similar attacks against a small number of smartphones have been done before, but the new attack could expose any cellphone using GSM technology.

“We can do it to hundreds of thousands of phones in a short timeframe,” Nohl told Reuters in advance of a presentation at a hacking convention in Berlin on Tuesday.

Attacks on corporate landline phone systems are fairly common, often involving bogus premium-service phone lines that hackers set up across Eastern Europe, Africa and Asia. Fraudsters make calls to the numbers from hacked business phone systems or mobile phones, then collect their cash and move on before the activity is identified.

The phone users typically don’t identify the problem until after they receive their bills and telecommunications carriers often end up footing at least some of the costs.

Even though Nohl will not present details of attack at the conference he said hackers will usually replicate the code needed for attacks within a few weeks.

Source: Reuters

Tags: , , , , , , , , , , ,
Comment

Samsung, You’re Doing It Wrong With Android 4.0

Filed under: 3G, 4G, Android, Applications, Droid, Google, Internet, Mobile, Samsung, Tablets, Technology, Telecom, Wireless by Ryan Boese — Leave a comment
December 25, 2011

The No. 2 bestselling Samsung smartphone in history won’t officially see an upgrade to Android 4.0, leaving owners to decide among buying a newer phone, sticking with Android 2.3, or hacking on a custom build of Google’s latest mobile operating system. The reason Samsung won’t be offering such an upgrade? According to Samsung Tomorrow by way of the Verge, Samsung’s own customized TouchWiz user interface is the answer, which sounds more like a lame excuse than a valid explanation.

Samsung’s Galaxy Tab—a 7-in. slate I’ve been using daily for more than a year now—is also on the “won’t see Android 4.0″ list, says the Samsung Tomorrow blog. I can understand we’re looking at a smartphone and a tablet that made their debut in 2010, and there’s a limited shelf life for future updates on mobile devices. What I don’t understand, nor accept, is that the issue is Samsung’s user interface software. Even worse, I think Samsung is shooting itself in the foot. Here’s why.

You have to treat current customers well. On the one hand, I can see Samsung’s stance if it chooses not to bring Ice Cream Sandwich (ICS) to these older devices. From a financial standpoint, those handsets and tablets are already sold, and Samsung has earned all the income it’s going to from the sale of such devices. To bring Android 4.0 to the Galaxy S and Galaxy Tab, the company would have to invest time, effort, and money to deliver the software. It has no financial incentive to do so. But customers don’t care about that and could decide to buy a competing product if they feel slighted.

Software add-ons should never stop product advances. Some people like TouchWiz, and some don’t. The same could be said for HTC’s Sense. Both are user interface add-ons atop Google Android, and neither should be the primary cause of stopping an Android update. HTC once fell into this same trap with Gingerbread on its Desire handset and eventually compromised by removing some custom apps to make room for the update.

This isn’t a technical issue, it’s a bad decision. My first thought about this situation was that perhaps the Galaxy S and Galaxy Tab didn’t have the horsepower to run Android 4.0. Yet the Nexus S, made by Samsung, will get the ICS software, and it has very similar specifications to the Galaxy S in terms of memory, storage capacity, and processor. And I’m willing to bet the Android enthusiast community will have a custom build of Android 4.0 for both devices, if it doesn’t already. How sad is it that external developers can make this happen, when Samsung can’t?

Will most people who own a Samsung Galaxy S or Galaxy Tab be in an uproar over this? Probably not, as they’ll likely never know about Samsung’s decision, nor will they be thinking about Android 4.0 for devices that are 18 months old. But the decision sets a bad precedent and suggests that Samsung is more concerned with selling newer hardware than supporting existing customers and their current devices.

My suggestion would be a compromise of sorts: Offer a stock version of Android 4.0 for these devices with the customer understanding and accepting the fact that the TouchWiz interface will no longer be available after the upgrade. Unless there’s a real technical reason for the lack of an Android 4.0 upgrade—something Samsung should make clear—this might be the best answer. It wouldn’t cost nearly as much for Samsung to develop and test, while consumers thinking Samsung has let them down might be more accepting of the situation.

Ryan:  Samsung needs to seriously get their &%#* together.  I would like to update my Samsung Galaxy Tab, I find it buggy and it force closes way too much, too bad I will be forced to workaround this to put 4.0 on myself manually.

 

Source: BusinessWeek

Tags: , , , , , , , , , , , , , , ,
Comment

Next-Gen BlackBerry Products Don’t Work, Source Says

Filed under: BBX, Blackberry, Repairs, RIM, Software, Technology, Telecom, Wireless by Ryan Boese — Leave a comment
December 22, 2011

Bad products, horrible software and no cohesive vision have seemingly turned Research In Motion into a company without motion at this point.

Throw in a huge delay before BlackBerry 10 smartphones start shipping, and it’s clear why people are losing, or have lost, faith in a company that played a tremendous role in making the smartphone industry what it is today. Thanks to one of our most trusted sources, BGR now has new information on what’s going on inside Research In Motion, and the picture isn’t pretty.

Our source has communicated to us in no uncertain terms that PlayBook 2.0 — the next-gen tablet operating system RIM is developing — is a crystal clear window into the state of BlackBerry 10 on the upcoming smartphones RIM is building.

And the view is none too good.

“Email and PIM [is better] on an 8700 than it is on BlackBerry 10,” our contact said while talking to us about RIM’s failure to make the company’s upcoming smartphone OS work with the network infrastructure RIM is known for.

We also have more background on why RIM’s BlackBerry 10 smartphones are delayed, and it has nothing to do with a new chipset that RIM is waiting on. Our source told us that CEO Mike Lazaridis was lying when he said the company’s new lineup was delayed for that reason.

“RIM is simply pushing this out as long as they can for one reason, they don’t have a working product yet,” we were told.

At the end of our conversation, our source communicated something shocking for a high-level RIM employee to say. He told us that RIM is betting its business on a platform and ecosystem that isn’t even as good as iPhone OS 1.0 or Android 2.0. “There’s no room for a fourth ecosystem,” he stated.

 

Source: BGR / Fox News
Tags: , , , , , , , , , , , , , , , , , , , , , , , ,
Comment

Windows Phone SMS attack discovered, reboots device and disables messaging hub

Filed under: Cybersecurity, Exploit, Hackers, Microsoft, Security, Technology, Telecom, Windows, Windows Phone 7, Wireless by Ryan Boese — Leave a comment
December 13, 2011

Microsoft’s range of Windows Phone devices suffer from a denial-of-service attack that allows attackers to disable the messaging functionality on a device.

The flaw works simply by sending an SMS to a Windows Phone user. Windows Phone 7.5 devices will reboot and the messaging hub will not open despite repeat attempts. We have tested the attack on a range of Windows Phone devices, including HTC’s TITAN and Samsung’s Focus Flash. Some devices were running the 7740 version of Windows Phone 7.5, others were on Mango RTM build 7720. The attack is not device specific and appears to be an issue with the way the Windows Phone messaging hub handles messages. The bug is also triggered if a user sends a Facebook chat message or Windows Live Messenger message to a recipient.

The flaw appears to affect other aspects of the Windows Phone operating system too. If a user has pinned a friend as a live tile on their device and the friend posts a particular message on Facebook then the live tile will update and causes the device to lock up. Thankfully there’s a workaround for the live tile issue, at initial boot up you have a small amount of time to get past the lock screen and into the home screen to remove the pinned live tile before it flips over and locks the device.

Both Apple and Google have suffered from SMS bugs with their iOS and Android devices. Security researcher Charlie Miller discovered a flaw in the iOS 3.0 software that allowed attackers complete control over an iPhone at the time. Android-based phones also suffered in the SMS attack, but attackers could only knock a phone offline rather than gain full access. The attack described in this article does not appear to be security related. It appears, from our limited testing, that the bug is related to the way Windows Phone handles messages.

Khaled Salameh discovered the flaw and reported it to us on Monday. WinRumors is in the process of disclosing the bug directly to Microsoft privately in co-operation with Khaled. At this stage there doesn’t appear to be a workaround to fix the messaging hub apart from hard resetting and wiping the device. Please see the video below for a demonstration.

 

 

Source: WinRumors

Tags: , , , , , , , , , , , , , , , , , , , ,
Comment

BlackBerry, iPhone, Gmail users at risk: WikiLeaks

Filed under: Android, Apple, Blackberry, Cybersecurity, Exploit, Google, Hackers, Internet, Mobile, RIM, Security, Technology, Telecom by Ryan Boese — Leave a comment
December 2, 2011

WikiLeaks is out with yet another explosive expose. It has released 287 files of numerous companies containing details of mass surveillance.

Speaking in London, WikiLeaks founder Julian Assange said more than 150 organisations worldwide were selling information obtained by monitoring people’s mobile phones and computers.

“Today, we release over 287 files, documenting the reality of the international mass surveillance industry. An industry which now sells equipment to dictators and democracies alike, in order to intercept entire populations. 9/11 has provided a license for European countries, for United States, Australia, Canada, South Africa and others to develop spying systems that affect all of us,” Assange said.

He added that iPhone, Blackberry and Gmail users were at risk.

The whistleblower website has in the past released classified US documents on the Iraq and Afghan wars as well as controversial details of US diplomatic cables.

 

 

Source: IBNLive Tech

Tags: , , , , ,
Comment

BlackBerry maker RIM offers its software for Android, iOS users

Filed under: Android, BBX, Blackberry, Droid, Google, RIM, Technology, Telecom, Wireless by Ryan Boese — Leave a comment
November 29, 2011

BlackBerry maker Research In Motion has allowed apps Google’s Android operating system to run on its BlackBerry Playbook tablet thanks to an emulator. Now it seems to want to return the favor by offering its software to Android and Apple’s iOS users.

According to a story from Ars Technica, RIM is offering its device management software to both its major competitors. The company made the announcement today that it would make the software available to Android and iPhone owners, which would allow users to manage those devices alongside BlackBerry devices using the software.

The new software is called BlackBerry Mobile Fusion and gives a lot of the same device management controls that BlackBerry customers enjoy (like remote phone locking and wiping and security features) to non-BlackBerry phones. It’s an acknowledgment on RIM’s part that it’s slowly losing its dominance in the field of business. While BlackBerry devices are still used heavily in enterprise, companies are also allowing employees to bring their own phones and use them.

BlackBerry Mobile Fusion allows RIM to continue to support its devices among businesses, even if its users also have other devices. RIM is aiming to become the “de facto platform” for device management among enterprise users, according to Alan Panezic, VP of enterprise product management at RIM. So while BlackBerry devices might be losing their market share, RIM doesn’t intend to be forgotten: it may just have to change the way it does things.

RIM has its work cut out for it, though. Its BlackBerry devices still curry a lot of favor among the government and businesses, but it’s losing traction to the widespread popularity of Android, and Apple’s iPad is popping up more and more in business settings. It probably didn’t help that BlackBerry devices suffered a worldwide outage in October. But the popularity BlackBerry does enjoy, as Ars Technica points out, largely comes from its management capabilities. Now Android users are going to have access to those same capabilities, which could help RIM maintain some popularity, especially if those capabilities become as popular on other devices as they have been on BlackBerrys.

On the other hand, if RIM gives up the things that make its handsets unique – by allowing millions upon millions of Android users to have those same capabilities without buying a BlackBerry – it could very well have a huge negative impact on the BlackBerry. We’ll have to wait and see if RIM’s gamble pays off, but in the meantime, Android users are going to have access to some potentially cool new software.

RIM says it’ll be releasing BlackBerry Mobile Fusion in the first quarter of 2012.

Source: Appolicious

Tags: , , , , , ,
Comment