±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 2 Overall: 36767
New Yesterday: 4 Visitors: 135

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

±Latest Videos

±Latest Jobs

Using iPhone to Hack or Transfer Malicious Software

Discussion of forensic issues related to all types of mobile phones and underlying technologies (GSM, GPRS, UMTS/3G, HSDPA, LTE, Bluetooth etc.)
Subforums: Mobile Telephone Case Law
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts
 
  

datacarver
Senior Member
 

Using iPhone to Hack or Transfer Malicious Software

Post Posted: Apr 30, 09 04:39

Has anyone come across this in the field or know of any methods? Essentially I would be interested in knowing if someone can take their iPhone/iPod and plug it in via USB to various machines to transfer malicious software or run a script that will extract sensative information?  
 
  

Infern0
Senior Member
 

Re: Using iPhone to Hack or Transfer Malicious Software

Post Posted: May 01, 09 02:40

With a hacked iPhone, you can run ssh, scp, afp, etc quite easily. This would make the transfer of files to from an iPhone as trivial as using finder (explorer in Windows). basically like an external storage device.  
 
  

Beetle
Senior Member
 

Re: Using iPhone to Hack or Transfer Malicious Software

Post Posted: May 01, 09 19:54

- Infern0
With a hacked iPhone, you can run ssh, scp, afp, etc quite easily. This would make the transfer of files to from an iPhone as trivial as using finder (explorer in Windows). basically like an external storage device.


There is also a suite of software that I have seen on the App Store and tried out myself. You don't need to hack the phone as such as you can use FileAid / DiskAid that provides access to the storage of the iPhone similar to disk mode on the iPod. The only issue is you need to install something (DiskAid) on the PC to get this to work and it also needs iTunes to be installed. There are a bunch of ssh packages on the App Store as well but I believe DiskAid /File Aid is the most friendly one so that would likely be the one most used. Most of the ssh stuff I have seen for un-jailbroken use doesn't give you access to the iPhone data store in any event. One app I haven't tried myself is WebSave. It apparently acts similar to a download manager for the the iPhone's Safari browser so you can store downlaoded files from the web to your phone and also have the ability to transfer them to a PC/Mac via Wifi. I don't think any of these apps can just dump a file on the PC side without some intervention on that side of the link, either through a webdav connection or FTP. Almost all these tools need a wifi connection to work.  
 
  

CI2019
Senior Member
 

Re: Using iPhone to Hack or Transfer Malicious Software

Post Posted: May 02, 09 01:29

Metasploit is available on a jailbroken iphone/ipod touch as well. I have not run into this yet in any investigations.  
 
  

datacarver
Senior Member
 

Re: Using iPhone to Hack or Transfer Malicious Software

Post Posted: May 02, 09 03:10

This is some great information. I appreciate it. I know for a fact that wifi was not used, and I know the custodian did not have iTunes installed so I can rule those two out and narrow my search. I did find evidence in the registry that the device was plugged into the machine. We will soon find out if it was for malicious purposes.  
 

Page 1 of 1