Apple is not happy at all today with some of its critical source code having been posted online for the world to see.
A user has just posted iPhone source code on Github that could very well open up the operating system for hackers and security researchers to better make iPhone jailbreaks. The company launched its bug bounty program in 2016, and flaws in secure boot firmware components were valued at up to $200,000. This component verifies that iOS is loaded correctly every time and if the kernel is signed by Apple.
The iOS device maker maintained that the leaked source code is now largely irrelevant since majority of iPhone and iPad users have already been updated to iOS 10 versions and up. It appears to be the source code for iBoot from iOS 9, so it's outdated, but iOS 11's iBoot probably has many similarities. "It's a huge deal".
As Macrumors points out, modern iOS devices have Secure Enclave processor protection, which hardens device security. A few hours later, Apple issued several DMCA notices and had the repositories removed from GitHub.
USA urges Bangladesh to ensure fair trial for Khaleda Zia
Zia was catapulted into Bangladeshi politics in the early 1980s when her husband former President Ziaur Rahman, was assassinated. The Court also awarded Khaleda Zia's son Tarique Rahman 10 years in jail for aiding her mother in the embezzlement.
Interestingly, the same source code was also published on Reddit four months earlier by a user named apple_internals. It was first revealed by Motherboard and contained code labelled "iBoot", the base instructions for how Apple maintains a trusted environment when starting up an iPhone. Here's hoping Apple is right, because the code was up long enough for it to spread far beyond GitHub.
Apple is famous for keeping its code secret, but this leak might result in some headaches for the Cupertino tech giant. But such a hypothetical vulnerability is unlikely to allow an attacker to bypass the cryptographic security on the iOS device itself, so it may be of less use to individuals trying to bypass a phone owner's password or PIN. These days, modders are more likely to sell the exploit than release it for free to the jailbreak community.
- Dwyane Wade returns to Heat in shocking deadline day deal
- Dams that supply Cape Town fall further as water crisis looms
- Britain rules out being in customs union with the EU after Brexit
- Snap Is Growing Faster Than Facebook In North America: Q4 Results Revealed
- Trump orders Pentagon to draw up plans for military parade in Washington
- Manchester United can win title next season, believes Ryan Giggs
- Joaquin Phoenix to play The Joker
- How To Disable iPhone Slowdown With New iOS 11.3 Battery Health Feature?
- Norwegian chefs accidentally order 15000 eggs for Olympic team
- VIX-linked products do not cause volatility: Cboe CEO