Security researcher exposes a five-year-old SMS flaw in iOS

iOS security flaw

Security researcher and iOS hacker pod2g has detailed a “serious” security flaw affecting all iPhones that he says could facilitate hackers or thieves to access your personal information. The flaw involves a malicious party spoofing the “reply” to number, essentially forcing you to send an SMS to a different number than the one you initially intended. According to pod2g, this flaw is present in all versions of iOS up to and including the latest iOS 6 beta 4.

The SMS flaw takes advantage of a feature in the PDU (Protocol Description Unit) — the protocol handles the sending and receiving of various types of messages in mobile devices. Included in the message header — similar to an email header — are various pieces of information regarding the message, including the sender details. This feature, commonly utilized for automated messages from companies and carriers, can be exploited since carriers don’t check for the validity of this information when used by third-parties. While all devices are capable of receiving these messages, iOS does not allow you to view the number that you’re replying to. This enables a malicious sender to fake his identity, making you think that a trusted number is sending the SMS. Because the “reply-to” number is different to the number displayed, iOS would send your message to a hidden number without you realizing.

While this is an issue Apple should address, there isn’t any immediate danger, as companies and financial institutions would never encourage sharing sensitive data over SMS. The researcher states that this could be used to impersonate your bank or incriminate you, but it’s difficult to imagine a situation where a user would start divulging sensitive information through a text message. The fact that this flaw has been around since the dawn of iOS but wasn’t exploited in a large enough scale to raise eyebrows, speaks volumes.

via Security researcher exposes a five-year-old SMS flaw in iOS | The Verge.


What Is Google Now and How Do I Use It?

Google Now

When Jelly Bean was officially announced, Android users had a lot to be excited about. The latest version of the OS is super-smooth (like Butter!), there are expandable notifications that actually include functionality, there is a better keyboard, better widgets, and a better camera/gallery.

The biggest announcements, of-course, were the addition of a better voice search, and with it, Google Now. So what is Google Now? Let’s find out!

Continue @ What Is Google Now and How Do I Use It? | Android.AppStorm.

How to Choose the Best Instagram Filter for Your Photo


Until recently, I only vaguely understood what each Instagram filter accomplished. I knew, for instance, that Rise would virtually erase the massive pimple on my face without washing out my skin tone. I assumed that every Twilight fan preferred Sutro, with its dark and enchanting exposure. And as for Kelvin — why even venture a guess?

If you’re like me, you stick with one to three tried-and-tested filters and forget the rest. Every so often, you make a halfhearted attempt to shuffle through the rest, only to become overwhelmed by the choices.

via How to Choose the Best Instagram Filter for Your Photo.


Office 2013 preview: cloud subscriptions, Metro flair, and touch improvements | The Verge

Microsoft’s Office 2013 reaches its public Customer Preview milestone today, available for end users to test on Windows 7 and Windows 8 PCs. Microsoft is calling its Office 2013 suite, codenamed Office 15, a “modern” version of the software that is used on a billion PCs worldwide. Cloud-connected and designed to work well on Windows 8 tablets, Office 2013 signals a shift to document collaboration and anywhere any device access. Notably, Microsoft is introducing an on-demand subscription version of Office 2013 that can be streamed from any Windows 7 or Windows 8 PC, with the ability to sync settings and documents. With strong competition from Google Apps and Apple’s iCloud storage and iPad hardware, how does Microsoft plan to keep Office 2013 desktop software and its cloud offerings relevant in a multi device era? Read on to find out…

via Office 2013 preview: cloud subscriptions, Metro flair, and touch improvements | The Verge.


50 Completely Free Android Apps

There’s certainly no shortage of free Android apps, but a lot of these are really more like free demos: they’re ad-supported “lite” versions with accompanying paid apps, or they’re 30 day trials, or they require you to unlock extra features via in-app purchases or by paying for a monthly account.

That’s not a bad thing, of course; we shouldn’t expect all developers to give away the products of their hard work for free! But in this roundup, we’ll look exclusively at apps that don’t ask for a penny.

50 Completely Free Android Apps | Android.AppStorm.


Google Now Better Than Siri

This is a first-hand comparison through experience of the new Google Now app and Apple’s Siri…

Google Now Better Than Siri – Business Insider.


Amazon buys UpNext – a 3D mapping startup

While Apple has been distancing itself from Google with the introduction of its own mapping service, it looks like Amazon might be following suit in the near future. According to reports online, the company recently bought up a 3D mapping startup, UpNext. The conditions of the deal weren’t mentioned – neither were what Amazon plans to do with the startup but we can be pretty sure it’s going to be the inclusion of a mapping service on the next generation Kindle Fire tablet (the current version lacks a GPS system).

Amazon buys UpNext – a 3D mapping startup | Ubergizmo.


Google Sound Search

Android Jelly Bean comes with a Google widget that lets you find the name of a song you’re listening to. Just like Shazam or SoundHound, except that the widget links to Google Play, so you can quickly buy the song if you’re in the US…

See it in action at this link: Google Sound Search.


Up ↑

%d bloggers like this: