Unfixable iOS Device Exploit Is the Latest Apple Security Upheaval

Forums Security News (Security) Unfixable iOS Device Exploit Is the Latest Apple Security Upheaval

Tagged: ,

  • This topic has 1 voice and 0 replies.
Viewing 0 reply threads
  • Author
    Posts
    • November 14, 2019 at 5:04 am #36557
      Telegram SmartBoT
      Moderator
      • Topic 5959
      • Replies 0
      • posts 5959
        @tgsmartbot

        #News(Security) [ via IoTGroup ]

        Headings…
        Unfixable iOS Device Exploit Is the Latest Apple Security Upheaval

        Auto extracted Text……

        But today a security researcher published an exploit that lays the foundation to jailbreak almost every single iOS device released between 2011 and 2017, including most models of iPad, Apple Watch, iPod Touch, and Apple TV.
        Though it isn’t an all-in-one jailbreak on its own, the exploit provides an extensive foundation for researchers to build off of in customizing jailbreaks for every vulnerable model of device that would allow them to totally take over the unit, run software far beyond what Apple normally allows, and program apps to interact and share data in ways that Apple’s protections usually preclude.
        The jailbreak hinges on flaws in Apple’s “bootrom,” memory in the processor that contains the fundamental code that runs first when a device powers on.
        Axi0mX found the bootrom vulnerability by reverse-engineering and examining a patch Apple released in summer 2018 for the iOS 12 beta.
        Since bootrom is foundational to a system, such exploits can be used to create extremely powerful jailbreaks that don’t depend on vulnerabilities specific to a particular iOS version.
        Even if an older device is running the appleios-13-arrives/”>recently released iOS 13, it’s still affected because the chip inside it is vulnerable.
        Before today, the most recent known bootrom exploit for an iOS device was for the 2010 iPhone 4.
        Researchers say that Axi0mX’s release represents a pivotal shift in the iOS security landscape.
        For the jailbreaking community, which works to tear free of Apple’s restrictive ecosystem in large part to be able to conduct more extensive security analysis, the findings will make it much easier to unshackle a slew of devices.
        And since researchers will still be able to keep those devices up to date with the latest iOS releases, they will potentially be able both to find and report bugs to Apple more quickly, and protect their test devices from attacks

        Read More..
        AutoTextExtraction by Working BoT using SmartNews 1.0299999999 Build 26 Aug 2019

    • Author
      Posts
    Viewing 0 reply threads
    • You must be logged in to reply to this topic.