It seems there is a major security flaw in the new Apple iPhone 2.2 version and you should definitely be aware of it. Apple has promised a a fix to a malfunction that could possibly cost you serious amounts of money.

Apparently, if someone simply visits a webpage in Safari, it can force a phone call to be made on your iPhone. Calls could be made to expensive pay per minutes 900 numbers and hundreds of dollars in charges could be racked up on your bill. This is according to Collin Mulliner of the Fraunhofer Institute for Secure Information.

He goes on to say that the exploit only requires three lines of HTML code, which anyone with basic knowledge of this language can add to any web page.

The scenario: The iPhone user receives an e-mail or SMS with an Internet link. Clicking on the link will open a web site. But suddenly, the iPhone will start calling a phone number without any user intervention. The worse thing is that you can’t stop the call, as the cellphone will be gray while the number is dialed. (…) Even amateurs could easily develop a criminal exploit.

Apple says the security patch will be available in a firmware update on Nov 21st.

Let’s hope this holds true and there are no further delays. This is too good of a phone to let something like this get in the way.

If you’ve been wondering what all the fuss is about with the iPhone, here is a video that details what this amazing gadget is all about: