Offering regional and national programs, CIO (and CSO) events bring together some of the most respected names and thought leaders in information technology and security. Presented by CIOs and other senior level executives, these invitation-only programs offer timely topics and strong networking. Learn More »
Develop Your External Leadership Skills
A collection of essays from CIO Executive Council members on understanding and developing the external-facing leadership competencies of "customer focus," "commercial orientation" and "market knowledge." CIOs from Best Buy, Universal Orlando Resort, Direct Energy and others describe how they have learned to anticipate customer needs, become market savvy and identify and enable commercial opportunities.
The CIO Paradox: Is IT Set Up to Fail? - FREE Webcast Jan. 19th
CIOs run what may well be the toughest function in the business, with end-to-end responsibilities across multiple levels of infrastructure, data management, processes and people. Yet you spend inordinate amounts of time justifying your existence. Join your fellow CIOs in this town-hall-style CIO Executive Council teleconference on rethinking IT governance, re-educating CEOs on IT value and enabling the profession to attack and defeat this "CIO Paradox."
Characteristics of Transformational Leaders - FREE Webcast Jan. 7th
Leaders come in all shapes, sizes and personalities. However, most great leaders share key traits which allow them to transform their organizations. Learn about some of these traits, how they manifest themselves in the workplace and how you can work towards adding them to your repertoire. Our seminar leader is Larry Bonfante, CIO of the U.S. Tennis Association.
Learn more about the CIO Executive Council »
Jailbreaking Puts IPhone Owners At Risk, Says Researcher
Jailbroken iPhones are much easier to hijack, security researcher Charlie Miller said today, and the proof is in the ikee worm that has infected some Australian phones.
November 09, 2009 — Computerworld —
Jailbroken iPhones are much easier to hijack, a noted security researcher said today, and the proof is in the worm that has infected some Australian phones.
The worm, known as "ikee," has been billed as the first iPhone worm, a title that Charlie Miller, famous for hacking iPhones and Macs, said is accurate. "I'd say it was a worm," said Miller. "It spreads, and it executes remote code, so it's a worm." Miller also agreed that it was the first, saying that although he and others have crafted exploits that compromise the iPhone, they have never been wrapped into a worm.
Miller, formerly with the National Security Agency and now an analyst with Baltimore-based Independent Security Evaluators (ISE), was one of three researchers who uncovered the first iPhone vulnerability in July 2007, just weeks after Apple debuted the smartphone. He's also known for successfully hacking Macs two years running at the annual "Pwn2own" contest, and is the co-author of The Mac Hacker's Handbook .
The ikee worm was released last Wednesday by Ashley Towns, a 21-year-old unemployed programmer from Wollogong, Australia, who told the IDG News Service that he intended it as a prank, and as a lesson to users who jailbroke their iPhones.
Miller, however, said that the lesson is more than the one Towns maintained: that users should change the default password of the SSH (secure shell) Unix utility. Towns' worm accessed others' iPhones using that default password, then changed their devices' wallpaper. SSH lets users connect to their iPhone remotely over the Internet over a encrypted channel.
"A year ago, I didn't think that jailbroken iPhones were less secure than those that weren't jailbroken," said Miller. "But I've changed my mind."
By jailbreaking an iPhone -- the term describes the process of modifying a device so its owner can download and install unauthorized software -- people leave themselves open to attacks that an unaltered iPhone would easily deflect, said Miller.
"The obvious reason why they're less secure is that you get extra software on the iPhone when you jailbreak," noted Miller, referring to the tools necessary to both hack the smartphone and install applications not approved by Apple. "But there are other, less-obvious reasons, too."
Among the latter is the fact that by design, a jailbroken iPhone allows software to run as "root," the Unix-based user account allowed to access the entire operating system. That gives hackers automatic access to everything on the iPhone, something not possible on a standard iPhone without an existing vulnerability and a working exploit.
Don't Sacrifice Speed
How Web Site Performance Impacts Shopper Behavior
Is an energy-wasting data center draining your bottom line?
Which UPS is Right for the Job
Maximize PC Energy & Cost Savings in a Windows 7 World
Secrets to Shrinking Your Storage
A Holistic Approach to Compliance Makes Business Sense
Top to Bottom Performance Management Excellence at the City of Chicago
Virtualize with Microsoft and NetApp Increase Application Uptime with Windows Server 2008 R2 Hyper-V and NetApp
Virtualize SharePoint and SQL Server Now - Maximize Efficiency and Availability with Hyper-V R2 and NetApp
Unleashing the Power of Customer Data
Does Your Network Let Customers Drive Your Business?
Resource Alerts
Get instant email notifications by topic when white papers, webcasts, and case studies are added to our library.
Qualcomm Reorganizes As COO Lauer Leaves
Forrester: Google Android Smartphones to Take 10% of Market in 2010
I4i to Keep Eye on Microsoft's Software for Signs of Backsliding
Vonage Offers Unlimited Int'l Calling for IPhone, BlackBerry
Money-Saver Sites You Haven’T Heard of
E-Book Piracy: the Publishing Industry's Next Epic Saga?
DDoS Attack on DNS Hits Amazon and Others Briefly
High Windows 7 Satisfaction Spurs Corporate IT Spending
Ballmer in 2010: Should He Stay or Should He Go Now?
50-50 Chance Apple Unveils Tablet Next Month, Says Analyst
