Cryptopath

XMCO Partners is a security company publishing an online magazine about recent security topics. Their latest issue (#25) provides a HOWTO dedicated to creating signed mobileconfig files that are shown as valid from any iPhone/iPod Touch. The most interesting point is that they succeed in re-directing all web traffic from the victim’s device to their own server by configuring the operator access point proxy.

This issue (in French) can be found here:
ActuSecu at XMCO Partners