Apple software security hole could allow hackers to 'take over iPads, iPhones and iPods'

[Haggis]

A major security flaw in Apple software could allow hackers to gain remote control over iPads, iPhones and iPod Touch devices, online experts warned today.

The bug in the iOS operating system was exposed last night when a hacking website released a 'jail break' code for Apple customers.

Some Apple users choose to jail break their devices so they can download and run applications that are not approved by Apple, or use iPhones on networks of carriers that are similarly not approved.

 

Security experts warned that criminal hackers could download the code issued by website JailBreakMe.com, reverse engineer it to identify a hole in iOS security and build a piece of malicious software within a few days.

Patrick Runald, a senior researcher at online security firm Websense, said: 'If you are a malicious attacker, it is fairly doable.'

Apple has yet to release an update to iOS that protects customers against malicious software that exploits the flaw.

Apple spokeswoman Trudy Muller said the company was aware of the problem.

 

'We are developing a fix that will be available to customers in an upcoming software update,' she said.

Apple has long been vocal against jail breaking, which if done voids the warranty on its devices.

Any security flaw in iOS software - which runs Apple's iPhone, iPad tablet and iPod Touch - has the potential to affect millions of devices that are at the core of Apple's business.

Apple has sold 25million iPads since it launched last year. The company has also sold over 18million of its popular iPhones in just the first three months of the year.

Hackers can exploit the iOS vulnerability by creating a malicious PDF document file. It would infect Apple devices when users attempt to open that document, according to Mr Runald.

Once the device is infected, hackers can 'do anything they want', he said. That includes stealing passwords, documents and emails.

Comex, a 19-year-old hacker from New York State who developed the jail-breaking tool, said that Apple might be able to patch the software before criminal hackers develop software that exploits the bug.

Last time he put out a version of his jail-breaking software, Apple was able to issue a patch before anybody exploited the bug for malicious purposes.

He said that Apple might not be able to move quickly enough this time.

 

'It's not that hard to reverse engineer,' he said.

 

 

Source: Daily Mail