Security researchers are reporting two purported security issues with the iPhone today.

ETH Zurich reports on a seemingly innocuous flaw wherein the iPhone’s quasi-GPS (cell tower and WiFi triangulation) scheme can be fooled into displaying an incorrect location to the user. The system can be tricked by impersonating known locations (falsifying MAC addresses) and jamming actual, […]

Far from the elegance of Apple’s forthcoming native Exchange support but not postponed until June, the iAnywhere suite for iPhone from Sybase will begin shipping in the next two weeks. iAnywhere, essentially, acts as a middle-man between Microsoft Exchange and Lotus Domnio servers, providing IMAP and SMTP accessible Exchange/Domino services to the iPhone while requiring […]

Conspiracy theories sure are fun.
A forum post Friday about a curious line of code in Apple’s iPhone quickly grew into suspicions that the company was tracking all kinds of data after a blogger picked up the tin foil and ran Sunday night. Apparently when you check stocks or weather on the iPhone, the application sends […]

A few weeks ago, Rixstep posted a piece titled simply “Effective UID: 0,” pointing out the fact that (as revealed by iPhone crash reports — see this article on deciphering) expressing concern the iPhone runs most (all?) of its applications/processes as root (superuser, UID 0). This means that they enjoy full system rights — a […]

Independent Security Evaluators (ISE), a security consulting firm that claims it was first to develop a tool that could extract keys from WiFi networks simply by eavesdropping on the network, has now purportedly discovered a serious iPhone flaw that could allow complete control of the device via a malicious Web page.

The flaw would allow outside […]