Security firm Independent Security Evaluators claims that they have found a browser based iPhone security flaw that lets hackers take control over the iPhone.
A web page could contain malicious code that can access personal data stored on the iPhone. Via remote instructions hackers could tell the phone to send files via the wi-fi connection. Apple said to look into the security firms report.
More details on the NY Times and on this page, where the iPhone hack is outlined.