"The number could lawsuit inwards remote code execution on affected BlackBerry smartphones," the Waterloo, Ontario-based fellowship said. "Successful exploitation of the vulnerability requires the user to browse to a website that the aggressor has maliciously designed."
The flaw is inwards the WebKit browser that RIM includes inwards version vi of its BlackBerry OS.
RIM said hackers tin pocket information from users' retention cards on only about BlackBerry devices. They tin likewise install malware past times exploiting the hole, but the fellowship said that fifty-fifty if attacked, the phone's emails together with contacts would live on safe.
The publicity is specially bad for the fellowship who stakes its reputation on the safety together with privacy of its service. RIM, which has been forced to role to a greater extent than third-party software to compete amongst the flashy features of other platforms, provides to a greater extent than targets to hack.
The vulnerability was discovered at the "Pwn2Own" hacking competitor final week. Although the competitor winners were non allowed to publicize specifics of the vulnerabilities until companies induce got patched them, it's possible that malware authors are already aware of it.
An iPhone four was likewise hacked during the contest.
The competitor could truly assist RIM, though, if it drives focus on security. According to the coders who discovered the flaw, RIM's smartphone software doesn't brand role of only about of import safety techniques, together with the fellowship is heavily reliant on "security past times obscurity," the fallible strategy of hiding how software industrial plant to continue hackers at bay.
Share This :
comment 0 Comments
more_vert