----
App security flaw makes your iPhone call without asking
// Engadget Mobile
If you're an iPhone user, you may want to be cautious about opening messages that contain phone numbers in the near future; they may cost you a lot of money. Developer Andrei Neculaesei notes that maliciously coded links in some apps will abuse the "tel" web handler (which covers dialing) to automatically make a phone call the moment you view a message. Potentially, an evildoer could force you to call an expensive toll number before you've had a chance to hang up. The exploit isn't limited to any one app or developer, either. Facebook Messenger, Gmail and Google+ all fall prey to the attack, and it's likely that other, less recognizable apps exhibit similar behavior. Apple's Safari browser will ask you before starting a call, but FaceTime's behavior lets you pull a similar (though not directly related) stunt.
Filed under: Cellphones, Internet, Mobile, Apple, Google, Facebook
Via: PCWorld
Source: Algorithm.dk
----
Shared via my feedly reader
Dwight A. Hunt, Sr. A+, MCP
Facebook and Twitter: dahuntsr
Blogs:
Books, Podcasts, Old Time Radio & Movie instant stream reviews: http://audio-book-
Tech articles, firearms & all other posts: http://dahuntsr.
No comments:
Post a Comment