IBoot source code for iPhone leaked online

DooKey

[H]F Junkie
Joined
Apr 25, 2001
Messages
12,706
Source code for one of the core components of the iPhone operating system was leaked onto the internet yesterday via GitHub in what some are calling the biggest leak in history. iBoot is the code that loads the iOS and it runs first when the phone is turned on. You can imagine the damage hackers can do to iPhone users if they find some nice little holes in iBoot thanks to the leak. The semi-good news it that Apple filed a take down request with GitHub and the code is down now. However, it was up long enough that the bad guys already have it.

Having access to the source code of iBoot gives iOS security researchers a better chance to find vulnerabilities that could lead to compromising or jailbreaking the device, Levin said. That means hackers could have an easier time finding flaws and bugs that could allow them to crack or decrypt an iPhone. And, perhaps, this leak could eventually allow advanced programmers to emulate iOS on non Apple platforms.
 
Well, someone at Apple has just been given a pink slip and the customary walk out with the security guards. (Probably realized just now that it was not worth it, after all.)
 
I wouldn't mind having an iOS emulator on my Android device for those games that are only available on iOS. :)
 
Oh nice..we might find a meaningful way to fully "root" an iPhone now. My interest in it would go way up if I had the ability to eliminate apples garbage off it. Especially since more and more android handset makers are going out of their way to lock down the phones tighter and tighter..literally the primary reason Android came into existence.
 
I wonder if the FBI and NSA were quick enough to get their hands on it.
 
Well, someone at Apple has just been given a pink slip and the customary walk out with the security guards. (Probably realized just now that it was not worth it, after all.)


For something like an Iboot leak?

death-firing_squad-smokes-smokers-second_hand_smoke-smoking-ksmn2237_low.jpg
 
This isn't good news at all. Hate or Love Apple, any time stuff like this happens it hurts us all. China already steals everything we make and copies it.
 
The Linux kernel would need drivers for all the devices in it. Chances are, it has almost none. This is primarily due to Apple having custom silicon in most of the ICs.

Oh nice..we might find a meaningful way to fully "root" an iPhone now. My interest in it would go way up if I had the ability to eliminate apples garbage off it. Especially since more and more android handset makers are going out of their way to lock down the phones tighter and tighter..literally the primary reason Android came into existence.
 
This isn't good news at all. Hate or Love Apple, any time stuff like this happens it hurts us all. China already steals everything we make and copies it.

Actually I saw this as a good thing. Force them to fix any holes. You have to be delusional if you think China/Russia/et al dont already know about any backdoors into this. Nation states are lightyears beyond what the most sophisticated hackers are capable of. Pretty sure stuxnet proved that...
 
NSA and CIA didn't already get it. British or French intelligence agencies stole it (employee working for them). Then they give it to American intelligence agencies. The FBI then makes up a national security reason to use NSA and CIA assets to crack a US citizen's iPhone.

When you have to get around the 4th Amendment, you use overseas allies.
 
Wow, this is going to be a rocky 6 months of security issues for iOS devices. But in the end will be a good thing as they cleanup their problems.

As mentioned im also interested in iOS emulators for testing. That would be pretty awesome.
 
They'd still likely require the encryption key from the user.

Gonna be exciting to see Chinese iPhones.

iBoot is the start of the chain of trust that makes the encryption work. If they can find a spot to inject custom code, they can fool the phone into using the encryption keys without user input.
 
Nation states are lightyears beyond what the most sophisticated hackers are capable of.

The most sophisticated hackers are working for the Nation state.Government employees are just people pulled from society just the same as any other profession. But yes they do have access to more resources and information id imagine.
 
Last edited:
Oh nice..we might find a meaningful way to fully "root" an iPhone now. My interest in it would go way up if I had the ability to eliminate apples garbage off it. Especially since more and more android handset makers are going out of their way to lock down the phones tighter and tighter..literally the primary reason Android came into existence.

Literally the reason android came into existence? No. Android came into existence so that google had a path to vacuuming up your data that didn't rely on Microsoft or Apple.
 
The most sophisticated hackers are working for the Nation state.Government employees are just people pulled from society just the same as any other profession. But yes they do have access to more resources and information id imagine.

Not my point. My point was that the Nation state employeed as hackers are well beyond even the best ones out in the wild are capable of.
 
Not my point. My point was that the Nation state employeed as hackers are well beyond even the best ones out in the wild are capable of.

But that was my point also. Hackers don't suddenly grow an extra brain as soon as they sign a contract. They just have access to more inside information and resources.
As for 'hackers in the wild' they seem to get what they need without requiring a steady pay check in order to carry out an exploit.
 
Oh nice..we might find a meaningful way to fully "root" an iPhone now. My interest in it would go way up if I had the ability to eliminate apples garbage off it. Especially since more and more android handset makers are going out of their way to lock down the phones tighter and tighter..literally the primary reason Android came into existence.

dont support apple, many other companies making good products.
 
LOL Smart move Apple!

Want to sell more phones after that iPhone 8 / iPhone X disaster ? force them to upgrade but "leaking" the software ROFL

Your iToy's I mean iPhone's are no longer secure!!!! upgrade in the next 10 minutes and get a free battery replacement.
 
I'm thinking this is great news if it can be used to hack the phone and run third party ROMs!

I'd love an iPhone with LineageOS :p
 
IMHO this is amazingly good news for the consumer, as it should make jailbreaking and modification of the iPhone much easier.
 
This isn't good news at all. Hate or Love Apple, any time stuff like this happens it hurts us all. China already steals everything we make and copies it.

It's not. Like Apple pays any taxes, so we literally have nothing to lose..
 
This isn't good news at all. Hate or Love Apple, any time stuff like this happens it hurts us all. China already steals everything we make and copies it.

I disagree totally. If this makes it easier for people to copy/clone the iPhone and forces Apple to reduce their prices, I'm all for it. I'm in favor of whatever results in the lowest prices and widest selection for consumers.

Personally, many of the business practices of companies like Apple, the current ridiculous extension of Copyright Law and patents to terms way beyond what was originally intended, and the way that the DMCA has been abused to prevent end-user unlocking/product modification, are all seriously anti-consumer and need to be changed. I feel that both the Clayton and Sherman Anti-Trust acts are not enforced nearly often enough nor viewed as broadly as they should be based upon intent.
 
I disagree totally. If this makes it easier for people to copy/clone the iPhone and forces Apple to reduce their prices, I'm all for it. I'm in favor of whatever results in the lowest prices and widest selection for consumers.

Personally, many of the business practices of companies like Apple, the current ridiculous extension of Copyright Law and patents to terms way beyond what was originally intended, and the way that the DMCA has been abused to prevent end-user unlocking/product modification, are all seriously anti-consumer and need to be changed. I feel that both the Clayton and Sherman Anti-Trust acts are not enforced nearly often enough nor viewed as broadly as they should be based upon intent.

Apples walled garden is the reason their devices are so secure. If you want freedom, buy Android and live with the bugs, spyware etc. You cant have both and if Apple was an open ecosystem it would be exactly the same.
 
Let's get real guys, there are *no* 100% secure consumer operating systems, bootloaders, smart phones, dumb phones, networks, processors, etc. If you think they are, just give it some time.
 
Back
Top