BankThink

iPhone Security Flaw Opens Door to Malware

By Daniel Wolfe November 08, 2011, 4:26 p.m. EST 1 Min Read

Apple Inc.'s iPhone App Store is not as airtight as many believe, according to a researcher who managed to get a malware app through Apple's vetting process as a proof of concept.

The malicious app, called "Instastock," masqueraded as a stock-ticker app and has been available on the app store since September, Computerworld reported Tuesday. This app was able to connect to a server to download a file that could, in theory, steal sensitive data from the phone or access its camera and microphone.

Apple allows the iPhone to only run code that has been previously approved, but there is one exception to that rule, the article said. The exception is for Safari, the iPhone's built-in Web browser, which is able to run unapproved code to speed up websites that use Javascript.

The researcher, Charlie Miller, found that it is possible for a developer to trick the iPhone into thinking the malicious app is Safari, thus invoking the exception that allows it to run rogue code, the article said.

Content Director, Payments and Credit Unions, American Banker

For reprint and licensing requests for this article, click here.

TRENDING

Failures

Republic First fails; Fulton Bank acquires assets, branches

The Philadelphia-based bank's parent company, Republic First Bancshares, had been roiled by a yearslong proxy battle involving activist investors groups and its former CEO.

By Kyle Campbell

1h ago
Politics and policy

Custodia to appeal ruling in Fed lawsuit

The Wyoming-based digital asset bank filed paperwork to challenge last month's district court ruling, which affirmed the Federal Reserve's view about its discretion over master account applications.

By Kyle Campbell

6h ago
CFPB

Former CFPB Director Richard Cordray resigns from Education Department

The former head of the Consumer Financial Protection Bureau resigned Friday after the troubled rollout of the Free Application for Federal Student Aid led some House Republicans to call for his resignation.

By Kate Berry

6h ago

MORE FROM AMERICAN BANKER

Failures

Republic First fails; Fulton Bank acquires assets, branches

The Philadelphia-based bank's parent company, Republic First Bancshares, had been roiled by a yearslong proxy battle involving activist investors groups and its former CEO.

By Kyle Campbell

1h ago
Politics and policy

Custodia to appeal ruling in Fed lawsuit

The Wyoming-based digital asset bank filed paperwork to challenge last month's district court ruling, which affirmed the Federal Reserve's view about its discretion over master account applications.

By Kyle Campbell

6h ago
CFPB

Former CFPB Director Richard Cordray resigns from Education Department

The former head of the Consumer Financial Protection Bureau resigned Friday after the troubled rollout of the Free Application for Federal Student Aid led some House Republicans to call for his resignation.

By Kate Berry

6h ago
Earnings

Cullen/Frost boosts loan growth forecast despite higher-for-longer rates

The San Antonio-based bank said that loan growth, fueled in part by its expansion in key Texas markets, may compensate for pressure on deposits. It slashed the number of rate cuts it expects this year from five to two.

By Catherine Leffert

7h ago
Industry News

Renasant taps insider as next CEO, Aspiration spins out new brand

Mississippi's Renasant names its next CEO; environmental fintech Aspiration Partners spins out its consumer brand; the OCC adds five weeks to comment period for Capital One-Discover merger; and more in the weekly banking news roundup.

By Editorial Staff

7h ago
Earnings

Associated in Green Bay gathers lending momentum, boosts margin

The Wisconsin banking company forecasted loan growth of 4% to 6% for the full year, driven by an expansion into new commercial and consumer credit lines as well as enduring economic strength in the Midwest.

By Jim Dobbs

9h ago