11-08-2011, 11:55 PM | #1 |
Wizard
Posts: 4,538
Karma: 264065402
Join Date: Jun 2009
Location: Taiwan
Device: HP Touchpad, Sony Duo 13, Lumia 920, Kobo Aura HD
|
Apple banishes developer who points out security flaw
This really belongs in the Apple section as a warning to those who believe in the total security of iOS, but I would be eaten alive. So I am providing this info to you guys only.
http://sg.finance.yahoo.com/news/App....html?x=0&.v=1 |
11-09-2011, 06:16 AM | #2 | |
Interested Bystander
Posts: 3,725
Karma: 19728152
Join Date: Jun 2008
Device: Note 4, Kobo One
|
He was banned for submitting an app that exploited the flaw, not for pointing it out.
Quote:
|
|
Advert | |
|
11-09-2011, 07:07 AM | #3 | |
Wizard
Posts: 4,538
Karma: 264065402
Join Date: Jun 2009
Location: Taiwan
Device: HP Touchpad, Sony Duo 13, Lumia 920, Kobo Aura HD
|
Quote:
Point being Apple should thank him for helping them improve their products. Other companies hold contests and pay people to fool their security systems. |
|
11-09-2011, 10:02 AM | #4 | |||
Interested Bystander
Posts: 3,725
Karma: 19728152
Join Date: Jun 2008
Device: Note 4, Kobo One
|
Quote:
That isn't what the story said: "He proved his theory by building a stock-market monitoring tool called InstaStock, which connected to a server he controlled once it was installed on an iPhone or iPad." He wasn't open about it from the beginning, he was open about it after the fact. Quote:
Quote:
1. He knowingly uploaded software with hidden functionality which hijacked users' devices. 2. He did not disclose that the software has that functionality to Apple or to the users that downloaded it. 3. That is a violation of the TOS. Do you disagree with any of those statements? |
|||
11-09-2011, 11:13 AM | #5 |
hopeless n00b
Posts: 5,111
Karma: 19597086
Join Date: Jan 2009
Location: in the middle of nowhere
Device: PW4, PW3, Libra H2O, iPad 10.5, iPad 11, iPad 12.9
|
Unfortunately, this. Normally, I think most security researchers tend to inform the company first and only after they don't receive a reply that the company is trying to fix the problem do they make their findings public. Of course, he couldn't have known that his app would pass the app review process unless he submits it and I reckon that was as much part of his test as the actual exploit.
|
Advert | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Amazon security flaw? | jocampo | Amazon Kindle | 6 | 02-01-2011 04:30 PM |
Apple dips into its past, brings back Newton developer | MMascaro | Lounge | 2 | 10-01-2009 11:32 PM |
Apple re-hires original Newton developer | ekaser | News | 23 | 10-01-2009 01:03 AM |
Adobe patches latest Reader security flaw | Alexander Turcic | Reading and Management | 11 | 10-29-2007 04:56 PM |