Tag Archives: Apple

Apple Moves iCloud Data and Encryption Keys for Chinese Users to China

Apple has finally agreed to open a new Chinese data center next month to comply with the country’s latest controversial data protection law.

Apple will now move the cryptographic keys of its Chinese iCloud users in data centers run by a state-owned company called Cloud Big Data Industrial Development Co, despite concerns from human rights activists.

In 2017, China passed a Cybersecurity Law

Phone-Cracking Firm Found a Way to Unlock Any iPhone Model

Remember the infamous encryption fight between Apple and the FBI for unlocking an iPhone belonging to a terrorist behind the San Bernardino mass shooting that took place two years ago?

After Apple refused to help the feds access data on the locked iPhone, the FBI eventually paid over a million dollar to a third-party company for unlocking the shooter’s iPhone 5c.

Now, it appears that the

Apple’s Trusted-Boot-Routine “iBoot” leaked on GitHub

Apple keeps its source code well under wrap (as any company should) and so it was probably a surprise to everyone, when yesterday – all of a sudden – the iBoot code was found on GitHub, leaked by an unknown person. The best thing though is that the leak is not even new: Apparently jailbreakers […]

The post Apple’s Trusted-Boot-Routine “iBoot” leaked on GitHub appeared first on Avira Blog.

Read More

Apple’s iBoot Source Code for iPhone Leaked on Github


Apple source code for a core component of iPhone’s operating system has purportedly been leaked on GitHub, that could allow hackers and researchers to discover currently unknown zero-day vulnerabilities to develop persistent malware and iPhone jailbreaks.

The source code appears to be for iBoot—the critical part of the iOS operating system that’s responsible for all security checks and ensures a trusted version of iOS is loaded.

In other words, it’s like the BIOS of an iPhone which makes sure that the kernel and other system files being booted whenever you turn on your iPhone are adequately signed by Apple and are not modified anyhow.

The iBoot code was initially shared online several months back on Reddit, but it just resurfaced today on GitHub (repository now unavailable due to DMCA takedown). Motherboard consulted some security experts who have confirmed the legitimacy of the code.

However, at this moment, it is unclear if the iBoot source code is completely authentic, who is behind this significant leak, and how the leaker managed to get his/her hands on the code in the first place.

The leaked iBoot code appears to be from a version of iOS 9, which signifies that the code is not entirely relevant to the latest iOS 11.2.5 operating system, but some parts of the code from iOS 9 are likely still used by Apple in iOS 11.

“This is the SRC for 9.x. Even though you can’t compile it due to missing files, you can mess with the source code and find vulnerabilities as a security researcher. It also contains the bootrom source code for certain devices…,” a security expert said on Twitter.

The leaked source code is being cited as “the biggest leak in history” by Jonathan Levin, the author of a number of books on iOS and macOS internals. He says the leaked code seems to be the real iBoot code as it matches with the code he reverse-engineered himself.

Apple has open sourced some portions of macOS and iOS in recent years, but the iBoot code has been carefully kept private.

As Motherboard points out, the company treats iBoot as integral to the iOS security system and classifies secure boot components as a top-tier vulnerability in its bug bounty program, offering $200,000 for each reported vulnerability.

Therefore, the leaked iBoot code can pose a serious security risk, allowing hackers and security researchers to dig into the code to hunt for undisclosed vulnerabilities and write persistent malware exploits like rootkits and bootkits.

Moreover, jailbreakers could find something useful from the iBoot source code to jailbreak iOS and come up with a tethered jailbreak for iOS 11.2 and later.

It is worth noting that newer iPhones and other iOS devices ship with Secure Enclave, which protects against some of the potential issues that come with the leaked iBoot source code. So, I really doubt that the leaked code will be of much help.

Apple has yet to comment on the recent leak, though Github has already disabled the repository that was hosting the iBoot code after the company issued a DMCA takedown notice. However, the code is already out there.

We will update the article if we learn more.

Things to consider before buying a new smartphone

It’s a familiar story: Your old cell phone has done its duty, and now it’s high time for a new smartphone. The market is bursting with cutting-edge devices that are constantly outdoing themselves in the features department – and that are considered better than everything else. Bigger display, better camera, the best operating system … […]

The post Things to consider before buying a new smartphone appeared first on Avira Blog.

Read More

Enhance your iOS device with Avira Optimizer

You might have heard of the or which is available for PC and were wondering, when we’d finally have a similar product for iOS. Well – the wait is over! Please welcome our Avira Optimizer for iOS. The app allows you to clean the storage and memory for your iOS device which then again allows […]

The post Enhance your iOS device with Avira Optimizer appeared first on Avira Blog.

Read More

The best camera phones of 2017

The best camera phones of 2017 - cameraphones, camera phone, Fotohandys, Téléphones-appareils photo

2017 rocked the smartphone market, introducing increased photo-taking capabilities as never seen before. Here are the models to keep in mind. If you once used to go crazy trying to take a decent photo with your cell phone, today that is no longer an issue. Actually, for a few years now, a few hundred dollars […]

The post The best camera phones of 2017 appeared first on Avira Blog.

Read More