Ever heard of “carrierIQ?” Its an “app” on most cell phones (one that is hidden) that’s sort of part of the OS. It sends stuff to the carriers. It can also execute commands that someone texts to your phone by intercepting them before you see them. It has bugs, and might get a buffer overflow and blow chunks on your phone. Or it might just execute the code, and send a keylog or your current location or contact list back, then delete the text message so you never see it.
As a friend of mine that has been doing software research for years said, it’s basically a trojan that gets loaded by your phone manufacturer, and yes it’s been hacked more than once. (Of course I’m sure a software researcher would never hack the OS of a phone, any more than they’d see if they could run UNIX on an XBox 360, and here of course I’m just making up hypotheticals that no one would ever do.)
Just thought you’d like to know. Sleep well.