Given the hype surrounding Apple's iPhone, we're actually surprised that we haven't seen more holes to plug over the years. In fact, the last major iPhone exploit to take the world by storm happened right around this time two years ago, and now -- thanks to OS X security expert Charlie Miller -- we're seeing yet another come to light. Over at the SyScan conference in Singapore, Mr. Miller disclosed a hole that would let attackers "run software code on the phone that is sent by SMS over a mobile operator's network in order to monitor the location of the phone using GPS, turn on the phone's microphone to eavesdrop on conversations, or make the phone join a distributed denial of service attack or a botnet." Charlie's planning to detail the vulnerability in full at the upcoming Black Hat conference, but Apple's hoping to have it all patched up by the end of this month.

[Via HotHardware]

Yeah, we're all been-there-done-that with portable SNESs these days, but we've never seen it done like this. Marshall posted his creation, dubbed the "SUPERTENDO," to Ben Heck's forums, which seems to imply (along with the looks) that he took some queues from similar designs already floating around those parts. What really sets this one apart, however, is the vacuum-formed chassis and the instant "make me an offer" move to a sale -- being owned by a major faceless media conglomerate ourselves, we like to see a guy who's out for a buck. A quick hands-on Video is after the break.

[Via benheck.com]

It's one thing to bury something like developer mode -- a mode that the average Pre user will never need -- behind a cute-but-exhausting throwback Konami code, but it's quite another to hide useful stuff that way. A PreCentral tipster discovered that entering "RocknRollHax" on the keyboard (and yes, capitalization is important here) while in the email app enables the previously missing capability to use it in landscape mode; presumably Palm hid it from end users because they thought it was too buggy or weird for mainstream use, but it certainly works alright for us. Worst part is that the code needs to be re-entered each and every time the email app starts, so you'd better really want it -- but at least you don't have to root to get it.

With home screen widgets, an on-screen keyboard, great notification management, and hands-down the best Gmail experience of any platform, Android 1.5 finally makes it easy (or easier, anyway) to love Google's foray into the mobile world. Of course, if you're coming from an iPhone -- as some users inevitably will be -- there are a few features that'll be sorely missed as you make the transition. For us, a biggie was visual voicemail, and after a little trial and error, we found a cool way to add it into our device without even leaving the Google ecosystem -- and even better, it's totally free. Head on over to Engadget Mobile to find out how to do it.

Way back in the heady days of 2007, there was an iPhone without 3G data (hard to believe, we know, but trust us -- we were there). This iPhone, though revolutionary in some ways, was marred by the love-hate relationship its users suffered for missing out on some very basic features that they'd grown used to on mobiles of yore. One of those missing features, of course, was MMS -- and now, some two years later, here we are with a truly integrated MMS experience courtesy of the all-powerful hacking community. Granted, there have been MMS apps available for ages, but there's a difference: this is the same action 3G and 3GS owners are getting in conjunction with OS 3.0, which Apple curiously decided to hold back from original iPhone owners. As you might imagine, getting this going on your own phone is marginally more complicated than downloading from the App Store, so here's the question, you non-upgraders: just how badly do you want it?

[Thanks, Paul]

What's creepier than automatically informing Twitter every time your unborn child kicks his mother's womb? Giving all your Twitter followers a live feed of your heartbeat, including canned messages to announce your death in case you cease pumping Cheeto-infused blood through your goth-nerdy veins. This Japanese DIY project has open source schematics and is designed to bypass a PC and send the news of your heart hiccups directly the internet. Check out the appropriately dramatic video after the break.

According to Dieter over at PreCentral, real, honest-to-goodness usable apps are starting to "trickle out" for the Pre / webOS. Apparently utilizing a loophole in the operating system which allows unsigned apps to be sideloaded through email, homebrewers have taken to the interwebs with small utilities like the tip calculator (pictured above). This comes just a day after a group of DIY'ers figured out a workable solution for getting software onto the phone without rooting, so obviously Pre hacking is moving along at a healthy clip. These are -- of course -- very early applications, so don't expect perfection, and there seems to be some concern that Palm might want to patch up this hole, as it leaves the phone vulnerable to less altruistic endeavors. While the latter point is reasonable to consider, we do have a piece of advice for the folks at the front of this movement: don't wait and worry on how Palm will react to this stuff. It's important to push platforms like webOS, and the Pre needs all the love it can get on the development side right now.

Read - Right now: Install a Homebrew App without Hacking
Read - Homebrew Apps Tricking Out, but be careful

Sick of having to use your inconvenient mouse and keyboard to do "internet searches" for ROMs of your favorite retro games? Well a gentleman named Matthias might just have the answer to your prayers -- a USB SNES cartridge adapter. The enterprising DIY'er has created a combo hardware and software solution that allows you to plug in your dusty carts directly to your rig, and see the ROMs appear as standalone files which you can then load into the emulator of your choice. Apparently there are still some kinks to work out (like getting data rates up for larger games), and Matthias already has plans underway for a multi-system solution. Still, this is impressive stuff, even if it means we'll have to repurchase any titles we're missing from reputable online auction houses. Hey, at least it'll cut down our visits to "Russian porn sites." Check out the video of the whole thing in action after the break.

That iPhone OS 3.0 jailbreak we saw the iPhone Dev-Team pull off earlier this week? It's out now, or at least, part of it is. Pwnage Tool is now flooding torrents, but there's lots of caveats here. Most importantly, this isn't Ultrasn0w, which means if you're wanting to use your toy on T-Mobile or another unofficial carrier, be patient -- it's also worth noting that the jailbreak doesn't jibe with yellowsn0w, so those who rely on it should stay away for the time being. No compatibility with the 3G S, or at least, it probably hasn't been tested... we wouldn't recommend anyone setting the precedent here. You'll need Mac OS X to run it, with QuickPwn for Mac and Windows coming further down the line. Ultrasn0w is also due out at some indeterminate future, so that all said, if you're just needing right now a jailbroken device with spotlight functionality, hit up the read link for all the pertinent details. It should goes without saying, but they're might a few negative side effects to it, and one of the big ones we heard is that YouTube might be fubar'd at the moment.

Read - trois, drei, три, három! (Pwnage Tool released)
Read - No YouTube On Jailbroken iPhone 3.0?

Is it simple? Yes. Risky? A bit. Legal? We'll leave that to the lawyers 'cause we know that you're aching to give tethering a spin over your newly downloaded iPhone OS 3.0 update. We've seen several guides to enable tethering ever since OS 3.0 was first released into beta (and into the wilds) oh so many days ago. However, these were always carrier/country specific and required a bit more command line tampering than the common man could stomach. Now an automated solution has come to our attention that just works, is global, and doesn't require a jailbreak. Essentially, you use your iPhone to browse to a site that you've never heard of (help.benm.at), download a file that promises to reconfigure your local carrier profile, and then switch on tethering as you would had you tithed a monthly tethering fee to your carrier. We've confirmed that it works on T-Mobile NL and on O2 UK. There's obvious risk here so be careful and backup your iPhone first before giving this a shot. And don't go nuts either -- remember, your unlimited data plan likely contains a "fair use" clause and you can bet that carriers won't be happy to see their bandwidth diminish without compensation. Now brace yourselves and hit the read link for the full procedure... ready, go!

Update: Some are reporting that this procedure could disable MMS and visual voicemail depending on your country and carrier -- a fair trade for many.

Update 2: Techradar reports that O2 UK has responded to the tethering hack saying, "we reserve the right to charge customers making modem use of their iPhone or disconnect them." This assumes O2 can identify such customers.

Face it, not all mods are created equal. Take this SNES PC Case Mod, for instance, built by quangDX and DuPPs (their real names? we think not). Sure, they could've just crammed some PC guts in there and called it a day, but with love, care and some Lego spacers, they've crafted a true piece of art. The gutted Super Mario World cartridge acts as a slot-loading CD drive, there's a perfect lineup of connectivity in the back, and the real piece of magic: USB extenders disguised as regular controller plugs, and a reworked SNES controller to plug into 'em. The main guts are courtesy of an Acer Aspire One, and even the webcam and mic have been crammed into the front of that poor shredded cartridge. This is how it's done, folks.

[Via Gossip Gamers]

Well, that was fast. Just a couple hours after we noted Palm warning against hacking webOS to allow data tethering on the Pre, the first set of instructions has popped up. It's not the cleanest hack we've ever seen -- you need to root your phone, enable SSH, and then configure your browser to run through a SOCKS proxy -- but it'll certainly get the job done in a pinch. Just don't go crazy, alright? We've got a feeling Sprint's watching Pre accounts with an eagle eye.