Security researchers have discovered yet another way to crash your multi-touch device. This is now done with 19 lines of JavaScript Code and through a cleverly crafted website. The exploit “memory exhaustion remote denial of service vulnerability” affects Apple’s Mobile Safari web browser, which is a huge part of the popular devices.

All it takes for a website to have the malicious code is just to add the 19 lines of code and persuade the user to view it. This will crash the system and the device will immediately reboot.

Read the rest of this entry »

Oh the irony; just days after we wrote about an exploit that could allow insidious third-parties to eavesdrop on what you’re doing with your iPod Touch or iPhone, comes the news that Apple themselves are first to be caught gobbling up your activities.  It turns out that both the ‘Stocks’ and ‘Weather’ apps on both devices (Edit: this of course presumes that you’ve used Jailbreak to load the Stocks/Weather apps to your iPod Touch) contain a chunk of code that automatically sends your phone’s IMEI (the unique hardware serial number of your handset) whenever the software queries the server.

Read the rest of this entry »