When you talk about the iPhone and security, the main risk you think of is something to with jailbreaking or physically having it stolen. However iOS hacker Pod2g has discovered a major security issue to do with SMS, and it’s been there since day one of iOS, iDownloadBlog reports.
The glitch, should pirates exploit it, would allow them to phish for information by showing what seems to be the number of a bank or somebody else, when instead any reply would go directly to the pirate’s own number, potentially giving them access to valuable details.
In the text payload, a section called UDH (User Data Header) is optional but defines lot of advanced features not all mobiles are compatible with. One of these options enables the user to change the reply address of the text. If the destination mobile is compatible with it, and if the receiver tries to answer to the text, he will not respond to the original number, but to the specified one.
Most carriers don’t check this part of the message, which means one can write whatever he wants in this section : a special number like 911, or the number of somebody else.
While this could be potentially be quite dangerous for somebody with no common sense, I think most would probably realise that your bank sending you texts is not normal (unless you’ve asked for it) and avoid it. Nevertheless, phishing exists for a reason which is people do fall for it quite often, and this security hole could make for a good attempt.
All versions of iOS (from the version present on the original iPhone to iOS 6 Beta 4) have this problem, and pod2g has implored Apple to fix it before the final release of iOS 6 in the autumn. It could potentially also be an issue on other phones, even though most probably don’t have it.
We’ll have to see what Apple does as it could be a huge problem for some while for others it could just be a nuisance. Nevertheless, it should be fixed ASAP.