Apple Boots Developer Who Exposed Security Hole
Finding App Store bug costs Charlie Miller his license
By Rob Quinn, Newser Staff
Posted Nov 8, 2011 3:24 AM CST
Updated Nov 8, 2011 3:42 AM CST
"I didn’t have to report this bug. Some bad guy could have found it instead and developed real malware," Miller says.   (Getty Images)

(Newser) – Security guru Charlie Miller found himself kicked out of Apple's developer program just hours after he announced that he had found a major security flaw. Miller discovered a hole that allows iPhone and iPad applications to grab potentially malicious code from third-party servers even after they have been approved and gone live on the App Store, Forbes reports.

Miller, who has reported dozens of bugs to Apple over the years, tested the flaw with a stock-ticker app that won approval. The hidden features were grounds for ejection from the program, but Miller says his treatment is heavy-handed and counterproductive. "I don't think they've ever done this to another researcher. Then again, no researcher has ever looked into the security of their App Store. And after this, I imagine no other ones ever will," he tells CNET. "That is the really bad news from their decision."

More From Newser
My Take on This Story
To report an error on this story,
notify our editors.
Apple Boots Researcher Charlie Miller for Exposing App Store Security Hole is...
12%
9%
2%
60%
4%
13%
Show results without voting
You Might Like
Comments
Showing 3 of 7 comments
pg13
Nov 8, 2011 11:38 AM CST
Charlie Miller the "guru" is guilty of self-promotion. Any developer who follows the IEEE Code of Ethics would first report the security hole to the company, not implement it and then broadcast a successful "security exploit" across the internet. Completely unethical and self serving.
JoeQ
Nov 8, 2011 10:26 AM CST
Wow, it's that easy? That's not exactly a minor security issue.
embersyc
Nov 8, 2011 6:47 AM CST
Apple must maintain the fanboys false sense of security at all costs.