If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(Venture Beat)   Apple's response to iPhone SMS spoofing vulnerability: stop communicating with unwashed proletarian non-Apple devices, problem solved   (venturebeat.com) divider line 52
    More: Obvious, iPhone SMS, apple devices, problem solves, communications  
•       •       •

4341 clicks; posted to Geek » on 19 Aug 2012 at 9:32 PM (1 year ago)   |  Favorite    |   share:  Share on Twitter share via Email Share on Facebook   more»



52 Comments   (+0 »)
   
View Voting Results: Smartest and Funniest

Archived thread

First | « | 1 | 2 | » | Last | Show all
 
2012-08-19 09:37:39 PM
Which isn't at all what they said.

I'm all for the Apple hate, but at least make it factual.
 
2012-08-19 09:48:02 PM

ArcadianRefugee: Which isn't at all what they said.

I'm all for the Apple hate, but at least make it factual.


TFA: But iMessage can only be used between people on iPhone, iPad, or iPod touch devices with iOS 5.
 
2012-08-19 09:51:31 PM
You're holding it wrong.
 
2012-08-19 09:59:21 PM
So...same as it ever was?
 
2012-08-19 10:05:24 PM
In defense of Apple, it's possible for this to happen with ANY device that receives text messages. It's all in how the SMS client is implemented. iOS reads the "Reply Number" field and uses that as the reply number. Most other implementations read the "Sender Number" field, and display that AND the "Reply Number" field.

But yeah, it's a huge bug, that needs to be fixed.

And yeah, subby's assessment is correct. Apple did imply that you should just stop texting and use iMessage instead. Which means if you do that, you lose messaging with anyone without an iDevice.
 
2012-08-19 10:29:43 PM

tgambitg: In defense of Apple, it's possible for this to happen with ANY device that receives text messages implemented their SMS client incorrectly or lazily.


Seems like it should be a minor fix though.
 
2012-08-19 10:32:09 PM
You could also not text your BFF Jill your credit card numbers, you farking moron.
 
2012-08-19 10:44:07 PM

ModernLuddite: You could also not text your BFF Jill your credit card numbers, you farking moron.


But she won't ever come over unless I give her a credit card number.
 
2012-08-19 10:54:29 PM
I still haven't really found a meaningful use case for text messages. Mind you, I haven't found a meaningful use case for iMessage, either. I run an IM client on my phone, like a sane person should.
 
2012-08-19 11:11:45 PM

baorao: But iMessage can only be used between people on iPhone, iPad, or iPod touch devices with iOS 5


I have used the iMessage on my phone texting with a neighbor that had an android phone. Blue speech bubbles are the tell. The messages were blue.
 
2012-08-19 11:21:28 PM

t3knomanser: I still haven't really found a meaningful use case for text messages. Mind you, I haven't found a meaningful use case for iMessage, either. I run an IM client on my phone, like a sane person should.


I use IM for a conversation, text messages for messages. I would never want an IM session on my phone, that's what my computer is for.
 
2012-08-19 11:30:57 PM

mjbok: I use IM for a conversation, text messages email for messages


Maybe I'm just old.
 
2012-08-19 11:38:26 PM
And yet again an anti-Apple troll headline gets the insta-green.

Can Drew hire some people with a sense of shame?
 
2012-08-19 11:59:55 PM

bingethinker: And yet again an anti-Apple troll headline gets the insta-green.

Can Drew hire some people with a sense of shame?


i48.tinypic.com
 
2012-08-20 12:04:30 AM

ArcadianRefugee: Which isn't at all what they said.

I'm all for the Apple hate, but at least make it factual.


Well that is pretty much what they said, instead "oh our sms message system is farked up and we are working on a fix" that would have been the more appropriate response.

bingethinker: And yet again an anti-Apple troll headline gets the insta-green.

Can Drew hire some people with a sense of shame?


Well this one seems to have more teeth than other anti apple articles, they seem to have really farked up, I have never heard of spoofing text messages on any of my phones.
 
2012-08-20 12:05:35 AM

baorao: ArcadianRefugee: Which isn't at all what they said.

I'm all for the Apple hate, but at least make it factual.

TFA: But iMessage can only be used between people on iPhone, iPad, or iPod touch devices with iOS 5.


True. But Apple didn't say "Well then use our product", they said "unlike our product, SMS is unsecure in this manner". While they took advantage of the situation to promote their product, they did not say "screw you".
 
2012-08-20 12:19:34 AM

ArcadianRefugee: True. But Apple didn't say "Well then use our product", they said "unlike our product, SMS is unsecure in this manner". While they took advantage of the situation to promote their product, they did not say "screw you".


Yes but their statement was false since they said it spoofing could be done on any phone but the hacker even stated later in the article its not every phone, so in essence was "fark you, just use our service. Apple is so great why would you ever use something else?"

Apple's response to everything is to point the finger at someone else and their drones eat it up.
 
2012-08-20 12:52:45 AM

ArcadianRefugee: True. But Apple didn't say "Well then use our product", they said "unlike our product, SMS is unsecure in this manner". While they took advantage of the situation to promote their product, they did not say "screw you".


Ehhh.....that's EXACTLY what they said...

TFA: In a statement sent to media outlets yesterday, Apple said it takes security very seriously, but it directs users to use Apple's own iMessage service instead of texting.
 
2012-08-20 01:13:17 AM
"If there was hope, it must lie in the proles"
 
2012-08-20 01:34:31 AM

rocky_howard: TFA: In a statement sent to media outlets yesterday, Apple said it takes security very seriously, but it directs users to use Apple's own iMessage service instead of texting.


Which would be a wise maneuver (where applicable) at least in the interim, no? Even if I cannot get someone to switch to Firefox I can still get 'em to use it while I patch up the IE they let fall to shiat.

steamingpile: Apple's response to everything is to point the finger at someone else


True ... but that is usually the reaction of most companies, no? Not saying it makes then better/worse, just that that sort of thing isn't unexpected as a first line of defense for a corp.

steamingpile: the hacker even stated later in the article its not every phone


Which, if true, yeah, OK, I agree (and will shaddup). But he has yet to offer proof slash no one else has independently replicated his results, so I'll wait before hopping on the "Apple sucks!" bandwagon again. All we have so far is X made a claim that Apple refutes. Interesting? Sure, but nothing to get riled up about yet.
 
2012-08-20 01:46:17 AM

ArcadianRefugee: rocky_howard: TFA: In a statement sent to media outlets yesterday, Apple said it takes security very seriously, but it directs users to use Apple's own iMessage service instead of texting.

Which would be a wise maneuver (where applicable) at least in the interim, no?


No, it solves nothing.
-It only works with other IOS5 devices.
-You will still receive SMS from other people whether you like it or not, as you can't disable SMS on the iPhone. So even if you only use iMessage to talk to your friends, you can still get spoofed SMS texts. Apple's "suggestion" doesn't make any sense at all, unless you contact your provider and have them disable SMS on your line from their end.
 
2012-08-20 02:31:58 AM

ReverendJasen: -It only works with other IOS5 devices.


But anyone worth talking to has an iProduct, ergo plebeians are the only ones inconvenienced by the elites using iMessage.

/QED, I think
 
2012-08-20 04:05:32 AM

ArcadianRefugee: Which isn't at all what they said.

I'm all for the Apple hate, but at least make it factual.


How is it not factual? They said the work-around is to use an app that can only communicate with other iDevices.

No, how 'bout you farkin' fix it instead Apple? kthxbai
 
2012-08-20 04:27:49 AM

t3knomanser: I still haven't really found a meaningful use case for text messages. Mind you, I haven't found a meaningful use case for iMessage, either. I run an IM client on my phone, like a sane person should.


Back when I was still stateside (2+ years ago), the wife and I didn't have smart phones. We had EnV Touch feature phones from Verizon with unlimited texts. As I was a paramedic, and she was a NICU nurse, texts came in very handy. If she was busy and didn't have her phone in her, or I was in the middle of a patient run, we could just drop a message and the other would get back to it whenever.

Now I'm in Spain, and us US citizens have to jump through a lot of hoops to get a regular cell plan let alone data, so we just use cheap little AT&T feature phones with a ore-paid plan. Still comes in handy for that.

But if you are talking like everyone you know is using smart phones, yeah, I see your point.

/really feeling technologically inferior when even my dad has a smart phone and I don't...
//he can't use it, but that's besides the point...
 
2012-08-20 05:51:40 AM
I remember when Nokia got hit with a similar problem many moons ago. SMS, isn't really designed for what it ended up being used for and buried in it are several gotcha's.

/You could crash a Nokia phone with a specific SMS that had certain command characters hidden in it.
//But we're talking about the days of the 3310 so... yeah.
 
2012-08-20 06:20:52 AM

steamingpile: Apple's response to everything is to point the finger at someone else and their drones eat it up.


Now I must remember the name of, and reinstall, the game where you have minions and get them to attack by pointing your finger at things...

something something evil something

overlord?
 
2012-08-20 06:21:46 AM

Shadowknight: If she was busy and didn't have her phone in her


Are you sure this is the sentence you meant to type?
 
2012-08-20 06:29:17 AM
Well it seems that fapple have implemented SMS in an unsafe manner. I can completely understand them getting caught out by this new fangled message service. Give them some time and maybe they can figure a workaround.....
 
2012-08-20 07:23:29 AM
I use a Gmail Tap-like protocol for all my wireless data communications, so I'm good.
 
2012-08-20 07:25:29 AM

ArcadianRefugee: I'm all for the Apple hate


Actually, you have spent the entire thread defending Apple. Hopefully you get paid for this.
 
2012-08-20 07:58:46 AM

dready zim: Shadowknight: If she was busy and didn't have her phone in her

Are you sure this is the sentence you meant to type?


Unfortunately, no. Or maybe fortunately, because that's pretty damn funny.

But no, typing from a tablet and going too fast sometimes leads to whoopsies.
 
2012-08-20 08:04:56 AM

Without Fail: ArcadianRefugee: I'm all for the Apple hate

Actually, you have spent the entire thread defending Apple. Hopefully you get paid for this.


Speaking of Apple shills, where is Thaetus? or however you spell it.
 
2012-08-20 08:25:09 AM
So apple messes up again.. but the unthinking zomies that love a slow phone with a bad os will defend them til the end.. to each their own:)
 
2012-08-20 08:45:23 AM
SMS is not secure. Apple doesn't control that. You look stupid blaming it on Apple.
 
2012-08-20 08:48:38 AM

ReverendJasen: tgambitg: In defense of Apple, it's possible for this to happen with ANY device that receives text messages implemented their SMS client incorrectly or lazily.

Seems like it should be a minor fix though.


Which if "fixed" still allows anyone to read your text messages because that is how SMS works.
 
2012-08-20 08:51:04 AM

dready zim: Shadowknight: If she was busy and didn't have her phone in her

Are you sure this is the sentence you meant to type?


Set ringer to vibrate.

Giggity.
 
2012-08-20 08:57:28 AM
Look guys these are general vulnerabilities to SMS

http://en.wikipedia.org/wiki/Short_Message_Service#Vulnerabilities

It would be like blaming gmail because people can spoof emails with SMTP. It's dumb.
 
2012-08-20 09:12:56 AM

Corvus: Look guys these are general vulnerabilities to SMS

http://en.wikipedia.org/wiki/Short_Message_Service#Vulnerabilities

It would be like blaming gmail because people can spoof emails with SMTP. It's dumb.


Cut it out. Let them have their righteous indignation.
 
2012-08-20 11:45:15 AM

Corvus: ReverendJasen: tgambitg: In defense of Apple, it's possible for this to happen with ANY device that receives text messages implemented their SMS client incorrectly or lazily.

Seems like it should be a minor fix though.

Which if "fixed" still allows anyone to read your text messages because that is how SMS works.


And when's the last time you had secure data you sent via SMS?
 
2012-08-20 12:30:41 PM

Corvus: Look guys these are general vulnerabilities to SMS

http://en.wikipedia.org/wiki/Short_Message_Service#Vulnerabilities

It would be like blaming gmail because people can spoof emails with SMTP. It's dumb.


Except they're not. Other SMS clients on other phones display both the originating number and the "reply-to" number; iOS's only displays the "reply-to" number.

It's a direct consequence of Apple's usual oversimplification and emphasis on style over substance. Like every flaw on the iPhone.
 
2012-08-20 12:54:35 PM

mjbok: t3knomanser: I still haven't really found a meaningful use case for text messages. Mind you, I haven't found a meaningful use case for iMessage, either. I run an IM client on my phone, like a sane person should.

I use IM for a conversation, text messages for messages. I would never want an IM session on my phone, that's what my computer is for.


You both sound old. I'd completely do away with the speaking component of my phone if I could. Phones are made for text/im convos. And surfing the net. That's it.
 
2012-08-20 01:03:44 PM

Corvus: Look guys these are general vulnerabilities to SMS

http://en.wikipedia.org/wiki/Short_Message_Service#Vulnerabilities

It would be like blaming gmail because people can spoof emails with SMTP. It's dumb.


I don't think it's the vulnerability that people are complaining about, rather than Apple's reaction to it.
 
2012-08-20 02:50:15 PM
Non-issue. Like I would send a message to people who do not have an iphone anyway.
 
2012-08-20 03:08:14 PM
Yet on the Android front the news is reporting another 500,000 users affected by malware. No, this isn't a repeat from 5 minutes ago, or the 5 minutes before that, etc etc.

Link

But let's focus on a theoretical possibility of an attack instead of real-world issues.
 
2012-08-20 03:55:03 PM

JohnBigBootay: Non-issue. Like I would send a message to people who do not have an iphone anyway.


this is not a message.
 
2012-08-20 03:57:09 PM

OriginalGamer: Yet on the Android front the news is reporting another 500,000 users affected by malware. No, this isn't a repeat from 5 minutes ago, or the 5 minutes before that, etc etc.

Link

But let's focus on a theoretical possibility of an attack instead of real-world issues.


From your link "the malware is stubborn and hard to remove, but users outside of China have little to worry about with this latest discovery. The prime function of the mobile malware is to exploit a vulnerability in the mobile payment system used by China Mobile, making it of little value to the fraudsters outside of China. The malware takes advantage of a vulnerability in the China Mobile SMS Payment process"

I`m so startled!
 
2012-08-20 04:04:26 PM

dready zim: OriginalGamer: Yet on the Android front the news is reporting another 500,000 users affected by malware. No, this isn't a repeat from 5 minutes ago, or the 5 minutes before that, etc etc.

Link

But let's focus on a theoretical possibility of an attack instead of real-world issues.

From your link "the malware is stubborn and hard to remove, but users outside of China have little to worry about with this latest discovery. The prime function of the mobile malware is to exploit a vulnerability in the mobile payment system used by China Mobile, making it of little value to the fraudsters outside of China. The malware takes advantage of a vulnerability in the China Mobile SMS Payment process"

I`m so startled!


That's true. Do you really want me to Google the zillions of other real world Android Malware, and compare to iOS? That's not a road you want to go down.
 
2012-08-20 04:41:28 PM

saintstryfe: Corvus: ReverendJasen: tgambitg: In defense of Apple, it's possible for this to happen with ANY device that receives text messages implemented their SMS client incorrectly or lazily.

Seems like it should be a minor fix though.

Which if "fixed" still allows anyone to read your text messages because that is how SMS works.

And when's the last time you had secure data you sent via SMS?


Right, we don't that's the point SMS is not secure! So you don't send anything secure over it. That's not a bug in the implementation. Like I said it would like blaming Gmail for SMTP not being secure. It's stupid.
 
2012-08-20 04:42:27 PM

LL316: Corvus: Look guys these are general vulnerabilities to SMS

http://en.wikipedia.org/wiki/Short_Message_Service#Vulnerabilities

It would be like blaming gmail because people can spoof emails with SMTP. It's dumb.

I don't think it's the vulnerability that people are complaining about, rather than Apple's reaction to it.


What "If you want something secure don't use SMS use something else more secure" How the hell should they answer it exactly?
 
2012-08-20 06:07:22 PM

OriginalGamer: dready zim: OriginalGamer: Yet on the Android front the news is reporting another 500,000 users affected by malware. No, this isn't a repeat from 5 minutes ago, or the 5 minutes before that, etc etc.

Link

But let's focus on a theoretical possibility of an attack instead of real-world issues.

From your link "the malware is stubborn and hard to remove, but users outside of China have little to worry about with this latest discovery. The prime function of the mobile malware is to exploit a vulnerability in the mobile payment system used by China Mobile, making it of little value to the fraudsters outside of China. The malware takes advantage of a vulnerability in the China Mobile SMS Payment process"

I`m so startled!

That's true. Do you really want me to Google the zillions of other real world Android Malware, and compare to iOS? That's not a road you want to go down.


There's a LOT of FUD surrounding Android's so-called malware problem. And a lot of deliberate misinformation. Are there malware apps on Android? Yes. Is it as big of a deal that everyone says it is? No.

This article describes a lot of the FUD going on, especially around the latest scare, the Olympics Malware.

Yes, Android can be more of a target because it is more open. No one is denying that. But that openness is also one of it's strengths. It allows much more to be done with the OS than iOS allows.

Different approaches for different people. We need both Apple and Android in the market. It gives competition and choice, which is a very good thing.
 
Displayed 50 of 52 comments

First | « | 1 | 2 | » | Last | Show all

View Voting Results: Smartest and Funniest


This thread is archived, and closed to new comments.

Continue Farking
Submit a Link »






Report