- Innovation, regulation and research on tap at RSA 2008
- Researchers uncover 100 VoIP vulnerabilities
- Badware not pushing users offline
- Web attacks won't stop
- Most sites still hack-able
- Tips on employee monitoring
- Research: IT security maturing, but misaligned
- Clarke sharply criticizes Bush cyber-security plans
- Conference seeks to bridge risk, research
- Core finds new CEO
April 05, 2007 | Comments: (0)
First iPod virus discovered
Security researchers have found what they believe to be the first proof-of-concept attack designed specifically to infect Apple's popular iPod portable multimedia devices.
In a blog post on its Web site, Russian anti-virus specialists Kaspersky Lab published details of the threat, dubbed Podloso, which it claims can be launched and run on an iPod.
However, in order for the attack to take root, an iPod must have Linux installed, which is probably still fairly rare as it demands that users add the software themselves.
According to Kaspersky:
-If the virus is installed to the iPod by the user, the virus then installs itself to the folder which contains program demo versions. Podloso cannot be launched automatically without user involvement.
-Once launched, the virus scans the device's hard disk and infects all executable .elf [Executable and Linking Format] files. Any attempt to launch these files will cause the virus to display a message on the screen which says "You are infected with Oslo the first iPodLinux Virus".
Researchers said that the proof-of-concept has no payload and cannot spread itself, and therein poses no real threat at this time.
However, the code discovery proves that it is possible to create iPod malware, albeit for devices that have had additional software modifications made by their users, namely the addition of Linux programs.
In the enterprise, one could imagine that news of the test threat could lead more IT departments to ban the use of iPods on their networks. Some companies have already forbidden use of the handheld devices because they pose a risk for unauthorized data storage.
Posted by Matt Hines on April 5, 2007 08:47 AM
RATE THIS ARTICLE:
-
- COMMENTS
This is as much iPod malware as a Windows XP exploit running on a Macintel running XP under Parallels is Macintosh malware.
Sheeesh.
Posted by: drdreric at April 5, 2007 01:26 PMWouldn't it be easier to sneeze on the iPod and lend it to someone else? What the hell is the point of this proof of concept? This guy desperately needs a girlfriend.
Posted by: dRod at April 5, 2007 07:26 PMDo I have this straight? To get this "virus" you have to install Linux on an ipod, then install the virus. And then it can't spread. Some vulnerability.
Has InfoWorld lost touch with reality since abandoning the print version?
Posted by: Jim Stead at April 6, 2007 06:43 AMA good example of a virus is a reporter infected by a "unbelievable" a press release, infecting the intellegence of the editor who runs it and then infecting all of us with a useless, non-story full of FUD regarding the iPod.
A virus that cannot spread itself is not a virus:
"A computer virus is a computer program that can copy itself and infect a computer without permission or knowledge of the user."
http://en.wikipedia.org/wiki/Computer_virus
The headline is irresponsible.
Posted by: shawnpetriw at April 6, 2007 08:26 AMnext headline to look for:
"Idiot InfoWorld editor discovers that a new virus completely disabled his iPod after dropping it from a 30 story building"
Posted by: Jesse at April 9, 2007 09:49 PM
Or how about "Hyper sensitive Apple people freak out as expected when anyone says anything potentially negative about iProducts, then worship their Steve Jobs idols."
I mean, don't we see a lot of POC code moving into real threats in the desktop world these days? Haven't the Metasploit projects proven the value of examining exploit code?
OK, so maybe the headline is a little vague... but you know if it were a Windows POC affecting Zune these same nerds would be doing cartwheels.
Apple people stopped being cool 10 years ago, now they're just uber defensive lamers...
Posted by: PCdude at April 10, 2007 06:21 AM| ZERO DAY PODCAST |
| Listen to the latest podcast: |
MP3
•
•
•
Archive
•
![[VoiceIndigo Mobilize - Listen to podcasts on your mobile phone]](http://www.voiceindigo.com/ht/images/mobilize_logo_sm.gif){kind=logo}
|
TOP STORIES
ADDITIONAL RESOURCES
- Do you have the power to resolve technical issues with one call?
- Take control of your content- leverage Microsoft SharePoint
- Keeping the E-Mail Flowing
- SGI Adaptive Data Warehouse: Building a High-End Oracle Data Warehouse
- Five Steps to Secure Outsourced Application Development
- Global Shared Memory: Performance and Productivity Breakthroughs
