Posted by: MASMedia in Off Topic, iPhone apps
A 10-year-old hacker who goes by the handle CyFi has revealed at DefCon 19 Hackers Convention a zero-day exploit in games on iOS and Android devices. Researchers have confirmed the exploits as a new class of vulnerabilities. The 10yr old girl from California found the holes around January 2011 because she "started to get bored" with the pace of farmville and similar games.
Sitting down for a chat with CNET before her DefCon presentation, CyFi said, "It was hard to make progress in the game, because it took so long for things to grow. So I thought, 'Why don't I just change the time?'" Most of the games she discovered the exploit in have time-dependent factors. For example, planting corn might take 10 real-time hours to mature in the game. Manually advancing the phone clock forced the game further ahead than it really was, opening up the exploit.
CyFi has not yet revealed to the game makers her exploits.