Leak of Stale iOS Source Code Could Trigger Fresh Problems

Leak of Stale iOS Source Code Could Trigger Fresh Problems

Apple has played down fears that leaked source code from an old version of its iOS operating system could compromise the security of some products.

And now that the iBoot source code is in the hands of anyone who wants a copy, it's likely to give hackers ideas, inspiration, and above all, vulnerabilities to allow them to crack open older devices. Rusty Carter, VP of Product at Arxan Technologies commented below.

Now, a recent report by Motherboard has revealed that code was originally leaked by a former Apple intern.

The leak of the code- called iBoot - was reported by news site Motherboard. It ensures that the mobile OS's kernel is approved by Apple and legitimate for use on an iPhone or iPad.

Apple recently began using Secure Enclave processors that ensure greater security and made jailbreaking nearly obsolete.

Jonathan Levin, the author of a series of books on iOS and Mac OSX internals, called the leak "huge", speculating the code is now making rounds in the underground iOS jailbreaking community. The iPhone maker has also confirmed the code posted at GitHub is real indeed, but it isn't clear yet as to how it got leaked or who is responsible for it either. That employee was apparently encouraged by friends from the Jailbreaking community to pull source code and internal tools from Apple's servers. The code is an extremely top secret, closed, proprietary, copyrighted and confidential to Apple - however apparently the dear gents on Reddit have been sliding it inbetween each other whom are probably in the cybersecurity industry or just those interested in using it for the likes of jailbreaking for at least, the last four whole months - and who knows how much longer it was circulating in private. Through this leak, hackers can easily discover iOS complexities and can jailbreak iPhones.

Fortunately, numerous risks associated with the leak have been mitigated.

US Justice Department's No. 3 official to resign
Congress voted to extend that law , Section 702 of the FISA Amendments Act, last month. That job would now fall to Solicitor General Noel Francisco.

In a statement, the company said the security of the iPhone did not rely on "the secrecy of its source code".

With a hack like this, anyone could bypass the security measures from Apple and unlock your phone with it.

Apple has bad news for their more than 700 million iPhone users around the globe.

"If the documentation contains some crucial pieces - say file formats, interfaces or even Apple's fuzzing methodology - the impact could be even greater", he told TechNewsWorld.

Cyber-security expert Prof Alan Woodward, from the University of Surrey, said it was "extraordinary" that the code had been leaked.

However, according to the security researcher Will Strafach, for the end users it does not really mean anything positive or negative.

Related Articles