Apple Kicked A Security Researcher Out Of The Developer Program For Finding A Security Flaw

Security researcher Charlie Miller found a flaw in code signing on iOS devices which allows developers to sneak malware apps onto the App Store without Apple’s detection. This malware can be used to read your contacts, send the device files, steal photo’s, even make it ring or vibrate! So what does Apple do to thank this developer for bringing this major security vulnerability, remove his developer account!

A security researcher, looking into possible security holes in your coding….that’s unheard of. I hope this comes as a splash of cold water on every Apple iOS user’s face to wake them up that not even they are safe from malicious code. One thing to note about this discovery is that it can be in any app in the App Store.

Miller first displayed this by developing his own app with the malware in it, the app was approved by Apple, and then using the app, created this video to show everyone:

Obviously Miller’s app has been removed from the App Store. Oops Apple.

[Via 9to5]

Don't forget to follow iJailbreak.com on Facebook, Twitter and Google+. Be sure to check out our partnership page where you can get mentorship on starting your own business online.
  • Josh Custompcs

    If he made this video prior to being fired id assume this is why he was fired and not “because he found a flaw”. If he released this video before apple fixed the flaw then obviously he should have been fired as he made every idevice on the market 1000x more vulnerable to this kind of software

  • Isaac Francisco

    I agree.  It’s a grey area that he has ventured into.  On the one hand, developing the proof-of-concept app and putting it on the servers was (I’m guessing) a violation of his agreements he made with Apple.  But on the other hand, he hasn’t (claimed to have) done anything malicious with it, so the end is righteous, because he brought it to the attention of Apple.  So it’s up to Apple to make the call to either pardon him, thank him for his discovery, or kick him to the iCurb.

  • Clay

    Do you think apple could have been using this hole to spy on apple users.

  • http://twitter.com/CrunchDude Crunch

    LOL…Why does he act all surprised that Apple nixed him when he’s making “Gotya” videos about a major Apple security flaw. Apple has kicked people to the curb just for making them look bad and embarrassing them in the past.

    Perhaps worse yet is the fact that he didn’t do the right thing and get together with one or both of the dev teams to make a jailbreak for all of us. Is he as wasteful of all potential jailbreak vulnerabilities, I wonder?

  • Pingback: Jailbreak Warning: DO NOT Update To The iOS 5.0.1 Firmware [Hacker Pod2G Explains Why] — jailbreakjunkie.com

  • Pingback: Jailbreak Warning: DO NOT Update To The iOS 5.0.1 Firmware [Hacker Pod2G Explains Why] | iPhone 5 How To - Jailbreak iphone 4s | Unlock

  • Pingback: Windows 8 Will Not Be Coming To Smartphones

  • Pingback: Windows 8 Will Not Be Coming To Smartphones — jailbreakjunkie.com

  • Pingback: iOS Hacker’s Handbook Will Teach You All About The Vulnerabilities Of iOS

  • Pingback: iOS Hacker’s Handbook Will Teach You All About The Vulnerabilities Of iOS — jailbreakjunkie.com