Researcher Uncovers ‘Severe’ iOS Security Flaw

A “severe” iOS security flaw has been revealed, which could let crooks trick iPhone users into giving away sensitive information by exploiting a weakness in the phone’s handling of SMS messages, according to a security researcher.

The problem stems from the way iOS handles a section of the text payload known as UDH (User Data Header), which lets the sender change the reply-to number of the text. The issue affects releases of Apple’s mobile operating system including beta versions of iOS 6, which is expected to be released on the forthcoming iPhone 5.

This iOS security flaw could allow an attacker to mask their true identity so texts appear to come from a legitimate source, such as a bank. If the user replies, they would unwittingly send information to a different number.

The malicious text could ask for credit card details, or login information, if the attacker was looking to make some money.

Apple needs to fix iOS security

“Most carriers don’t check this part of the message, which means one can write whatever he wants in this section : a special number like 911, or the number of somebody else,” a researcher going by the name of pod2g wrote.

Whilst not viewed as massively problematic by some in the security community, the researcher still urged Apple to fix the bug, warning the security hole was still open in iOS 6 beta 4. iOS 6 is expected to be released to the general public next month, alongside a new iPhone.

“I am pretty confident that other security researchers already know about this hole, and I fear some pirates as well,” pod2g added. “Now you are alerted. Never trust any SMS you received on your iPhone at first sight.”

Hackers have sought to find ways to exploit SMS before. Late last year, researchers said malicious SMS messages were being used to disable the messaging hub on Windows Phone devices. They exploited a flaw in how the Windows Phone mobile platform handled messages to trigger a denial-of-service attack, capable of disabling all messaging functionality on a device.

Are you up on all the latest threats? Try our security quiz!

Thomas Brewster

Tom Brewster is TechWeek Europe's Security Correspondent. He has also been named BT Information Security Journalist of the Year in 2012 and 2013.

View Comments

  • Same applies to quite a few other email systems. More of a problem to Apple due to their idiotic smugness towards security!

    Always best to check the path the email has taken to arrive arrived at your inbox. be great if that was more obvious though in email clients

Recent Posts

Northvolt Mulls US Bankruptcy Protection – Report

Troubled battery maker Northvolt reportedly considers Chapter 11 bankruptcy protection in the United States as…

2 days ago

FTC Plans Investigation Into Microsoft Cloud Business – Report

Microsoft's cloud business practices are reportedly facing a potential anti-competitive investigation by the FTC

2 days ago

Programmer Sentenced To Five Years In Prison For Bitcoin Laundering

Ilya Lichtenstein sentenced to five years in prison for hacking into a virtual currency exchange…

2 days ago

Hate Speech Watchdog CCDH To Quit Musk’s X

Target for Elon Musk's lawsuit, hate speech watchdog CCDH, announces its decision to quit X…

3 days ago

Meta Fined €798m Over Alleged Facebook Marketplace Violations

Antitrust penalty. European Commission fines Meta a hefty €798m ($843m) for tying Facebook Marketplace to…

3 days ago

Elon Musk Rebuked By Italian President Over Migration Tweets

Elon Musk continues to provoke the ire of various leaders around the world with his…

3 days ago