Computing

Key iPhone Source Code Gets Posted Online in 'Biggest Leak in History'

Submitted by leonardomello, , Thread ID: 74160

Thread Closed
08-02-2018, 07:42 PM
This post was last modified: 08-02-2018, 07:43 PM by leonardomello
#1
Source code for iBoot, one of the most critical iOS programs, was anonymously posted on GitHub

[Image: 1518047804451-Screen-Shot-2018-02-07-at-63528-PM.png]

News:
Someone just posted what experts say is the source code for a core component of the iPhones operating system on GitHub, which could pave the way for hackers and security researchers to find vulnerabilities in iOS and make iPhone jailbreaks easier to achieve.

The GitHub code is labeled ?iBoot, which is the part of iOS that is responsible for ensuring a trusted boot of the operating system. In other words, its the program that loads iOS, the very first process that runs when you turn on your iPhone. It loads and verifies the kernel is properly signed by Apple and then executes itits like the iPhones BIOS.

The code says its for iOS 9, an older version of the operating system, but portions of it are likely to still be used in iOS 11.

Apple has traditionally been very reluctant to release code to the public, though it has made certain parts of iOS and MacOS open source in recent years. But it has taken particular care to keep iBoot secure and its code private; bugs in the boot process are the most valuable ones if reported to Apple through its bounty program, which values them at a max payment of $200,000.

?This is the biggest leak in history, Jonathan Levin, the author of a series of books on iOS and Mac OSX internals, told me in an online chat, referring to Apple's history. ?Its a huge deal.

Levin said the code appears to be the real iBoot code because it aligns with code he reverse engineered himself. A second security researcher familiar with iOS also said they believe the code is real. We dont know who is behind the leak. Apple did not respond to a request for comment.

A few hours after the publication of this story, Apple sent aDMCA legal notice demanding GitHub take down the iBoot code. "The "iBoot" source code is proprietary and it includes Apple's copyright notice. It is not open-source." This way, Apple indirectly confirmed that the code was real. GitHub took down the code soon after.

Having access to the source code of iBoot gives iOS security researchers a better chance to find vulnerabilities that could lead to compromising or jailbreaking the device, Levin said. That means hackers could have an easier time finding flaws and bugs that could allow them to crack or decrypt an iPhone. And, perhaps, this leak could eventually allow advanced programmers to emulate iOS on non Apple platforms.

Got a tip? You can contact this reporter securely on Signal at +1 917 257 1382, OTR chat at [email protected], or email [email protected]

Vulnerabilities in previous versions of iBoot allowed jailbreakers and hackers to brute-force their way through the iPhones lock screen and decrypt a users data. But newer iPhones have a chip called the Secure Enclave Processor, which has hardened the security of the device.

For regular users, Levin added, this means that tethered jailbreaks, which require the phone to be connected to a computer when booting, could soon be back. These jailbreaks used to be relatively easy to pull off and were common, but are now extremely hard to come by on up-to-date iOS devices, which have advanced security mechanisms that make it hard for even highly skilled researchers from even looking for bugs, as they need to first jailbreak the device before beginning to probe the device.

Its these security improvements that have have effectively killed the once popular jailbreak community. Nowadays, finding bugs and vulnerabilities in iOS is something that requires a significant amount of time and resources, making the resulting exploits incredibly valuable. Thats why the jailbreaking community gets excited for any leak of source code or any exploit that gets released publicly.

This source code first surfaced last year, posted by a Reddit user called ?apple_internals on the Jailbreak subreddit. That post didnt get much attention since the user was new and didnt have enough Reddit karma; the post was quickly buried. Its new availability on GitHub means its likely circulating widely in the underground jailbreaking community and in iOS hacking circles.

?iBoot is the one component Apple has been holding on to, still encrypting its 64 bit image, Levin said. ?And now its wide open in source code form.

font:https://motherboard.vice.com/amp/en_us/article/a34g9j/iphone-source-code-iboot-ios-leak



What's your opinion on this news? Because Apple's latest boot leak made it possible to install Windows on a Macintosh and hackintosh the PC's conventional

Users browsing this thread: 2 Guest(s)