iPhoneRoot.com       

News tagged ‘exploit’


Gull1hack: utility to hack the iPhone and iPod Touch with the new Bootroom





gull1hack

A new group of hackers claim they found a new exploit for the iPhone 3GS and iPod Touch with the new BootRom. This means that jailbreak for iPhone 3GS (late models) and iPod Touch 2G (MC) and iPod Touch 3G will be available.

We just found an amazing Exploit in the Boot-System of the 3GS with the new Bootrom! This Exploit works on ALL iPhone and iPod Touches!

The tool will be called Gull1hack. The operation is very simple and the code is sent when the device is in recovery mode, just like Blackra1n and Redsn0w do. This jailbreak tool has been neither confirmed by Geohot nor from the DevTeam. Many users think this is fake. We'll see.

Here's a video with Gull1hack in action:


Read the rest of this entry »




|
   

Leave a comment

Hack the iPhone and get $10,000



pwn2own

The annual Pwn2Own hacking contest is coming up next month. During the event competitors will be given the chance to win cash prizes.

The competition will start on March 24 at the CanSecWest security conference in Vancouver, British Columbia. This year, hackers will take on an iPhone 3GS, a Blackberry Bold 9700, an unspecified Nokia smartphone running the Symbian S60 platform and a Motorola, most likely a Droid, powered by Google 's Android. A successful hack must result in code execution with little to no user-interaction. Any exploited phone wins its attacker $10,000 in cash.




|
   

Leave a comment

Apple Bans Hackers from iTunes App Store



It looks like Apple has started banning iPhone hackers from the iTunes App Store.

A few day ago Sherif Hashim, the iPhone developer and hacker, tweeted that he had found an exploit in the latest iPhone OS 3.1.3, which could enable the unlock on 05.12.01 baseband for iPhone 3GS and iPhone 3G. Yesterday he has been banned by Apple for the so called "security reasons". It seems that Apple is quite angry! Here is what Sherif gets when he tries to access App Store from his iPhone:

AppStoreBan

Sherif Hashim’s Tweets:

"Your Apple ID was banned for security reasons", that's what i get when i try to go to the app store, they must be really angry :) ))))

and guess what my apple ID was, "sherif_hashim@yahoo.com", what a fool was me not to notice :) )), can't help laughing, they are babies :) ))

Another iPhone hacker named iH8sn0w, the developer of Sn0wbreeze (PwnageTool alternative for Windows), tweeted saying he was also banned by Apple right after he released an exploit known as XEMN:

@sherif_hashim lol, they did that to my ih8sn0wyday[@t]googmail.com too. (right after I posted XEMN)…

For now Apple isn’t banning Jailbreakers - they’re banning people who actively work to find exploits in the iPhone software to create Jailbreaks for the rest of us.




|
   

Leave a comment

Unlock for iPhone firmware 3.1.3 Baseband: vulnerability is already found



pwned

Sherif Hashim has discovered an exploit which may allow unlock of the latest iPhone OS 3.1.3 baseband 05.12.01. Such unlock utilities for previous baseband versions were called blacksn0w, ultrasn0w и and yellowsn0w. MuscleNerd, the member of DevTeam, has already confirmed it is working. So the timing of the unlcok release is totally up to them right now.

musclenerd-unlock313

Here is an official update from DevTeam:

"We’ve started to look at his crash but it’s a long road between any given crash and a fully working unlock, and we couldn’t put an ETA on it even if we wanted to. It’s not even guaranteed that an working unlock will come from this particular crash — it’s just too early to tell."




|
   

Leave a comment

Scammers exploit Apple iPad fever



Newsworthy events are often targeted by hi-tech criminals. The iPad wasn’t the exception.

On the last week terms like “Apple” and “iPad” were among the most popular on different search sites and services because of the Steve Jobs’ presentation. That caused hi-tech scammers to tune their booby-trapped webpages to show up near the top of search results with that terms. So when the user enters such words as “Apple iPad rumor” or “Apple iPad size”, he has a probability to go to the sites that will peddle rogue security software to him.

Google results page

Moreover, some sites were tuned in such way they could define user’s OS and choose a different type of attacking it. Other sites send users to web pages that pose Google’s search engine and manipulate the results people see. The only way to stay protected from these scammers is to be attentive to strange sites and links, to have an up to date security software installed and the latest OS system patches.

[Via BBC]




|
   

Leave a comment

Written by SimplyMax

Tuesday, February 2nd, 2010. 16:51

Geohot will hack new baseband 05.11.07



Few hours ago GeoHot left a new message on Twitter - he officially started looking for an exploit in the new baseband 05.11.07.

geohot-unlock

All iPhone 3G/3GS owners with native firmware 3.1 or higher will be finally able to unlock the phone. This also applies to iPhone owners who updated to firmware 3.1 or 3.1.2 by mistake.

via ispazio




|
   

Leave a comment

Sn0wbreeze: New Teaser Video



iH8sn0w has just released a new teaser video showing Sn0wbreeze, application for Windows that would basically be a clone of PwnageTool, equipped with the ability to create custom firmware and unlock the various devices.

Many users believe that Sn0wbreeze is just "fake,".. Hopefully iH8sn0w did found an exploit and will finish Sn0wbreeze soon.

Let's watch the video:




|
   

Leave a comment

iPhone jailbreak and unlock might end soon



no-jailbreak

Apple has updated the BootROM for the iPhone 3GS to iBoot-359.32. This software upgrade is reportedly not vulnerable to an exploit hackers previously used.

MuscleNerd, a member of the iPhone Dev Team, noted this is the first time ever that Apple has done a BootROM update in the middle of a product line, without a new hardware model. The Dev Team is a group of hackers who release tools used to exploit the iPhone OS. With the new iBoot hackers will not be able to use "24kpwn" exploit.

This means that anyone who will buy an iPhone 3GS these days, will not be able to jailbreak and unlock it, probably for a very long time.

iboot




|
   

Leave a comment

Geohot is very close to iPod Touch 3G and iPhone 3GS jailbreak



ipt3_jailbroken-1

Geohot published new photo, where we can see the file called "ipt3_jailbroken". This means that he was able to unlock the iPod Touch 3G and run the Jailbreak. He said that this the same exploit works with in iPhone 3GS firmware 3.0 and 3.1 native.

It looks like we will see his new tool with classic buttons to run the Jailbreak in 10 seconds quite soon.




|
   

Leave a comment

iPhone 3GS firmware 3.1 jailbreak



Finally here are come good news for all iPhone 3GS owners. The DevTeam has managed to perform jailbreak on iPhone 3GS with firmware 3.1!

pwn

This means that the exploit worked and that the new Pwnage Tool will soon be able to run the iPhone 3GS Jailbreak with firmware 3.1. We will keep you updated!

pwned-31 pwned-31-o2




|
   

Leave a comment

GeoHot vs DevTeam: new version of Purplera1n soon?



geohot2

geohot

Now everyone will know that the DevTeam and GeoHot are no longer in good terms and in fact shortly after the release of Redsn0w 0.8, the tool to run the jailbreak of Firmawre 3.0, there were many discussions on Twitter between GeoHot and copumpkin, one of the DevTeam members.

GeoHot  complained that redsn0w uses the same "hole" and the same exploit to run the iPhone 3GS Jailbreak, copumpkin said that the flaw was the same but the exploit was completely different and created entirely by them. Not trusting, GeoHot asked repeatedly Hash codes (the identity) for the files needed to run the exploit and said that it had not been a good idea to release two programs that use the same "hole" (stealing?).

GeoHot also said, that redsn0w has problems (which is true, some users have reported problems) and so he plans to release a new better version of Purplera1n. It will probably will also unlock the iPhone.




|
   

Leave a comment

iPhone 3GS jailbreak and unlock soon



hack-iphone3gs

And after the various Key and provocations made by GeoHotz, the DevTeam has decided to write a new article on the official blog with good news for all owners of an iPhone 3GS! The DevTeam has verified that the exploit called 24Kpwn (used for the first time to unlock the iPod Touch 2G) is still valid and it works wonderfully for iPhone 3GS.

It seems the new version of bootrom used by Apple in 3GS dates back in August, a few months before the release of 24Kpwn, so there was no time to solve the problem.

In addition, the new daemon released by the team under the name of ultrasn0w (unlock for iPhone 3G) will work with iPhone 3GS.

New versions of redsn0w (jailbreak) and ultrasn0w (unlock) with iPhone 3GS support will be released soon.




|
   

Leave a comment

iPhone's security issue



It's amazing, how curious some people are. iPhone hacker and data-forensics expert Jonathan Zdziarski explained that iPhone snaps a screenshot of your most recent action -- regardless of whether it's sending a text message, e-mailing or browsing a web page -- in order to cache it. This is purely for aesthetic purposes: When an iPhone user taps the Home button, the window of the application you have open shrinks and disappears. In order to create that shrinking effect, the iPhone snaps a screenshot, Zdziarski said.

The phone presumably deletes the image after you close the application. But anyone who understands data is aware that in most cases, deletion does not permanently remove files from a storage device. Zdziarski demonstrated that if you know what you're doing (and you've got over an hour), you can recover the file system and see many, many of these grabs.

"This flaw can only be exploited by somebody with physical access to a device, but your phone could get into the hands of someone with more malicious intent," he said. "Obviously, you don't want to trust any of your data to a passcode."

Gadget Lab is also reporting that Zdziarski said forensics experts have actually used this method to solve serious crimes.

via gizmodo and gadget lab




|
   

Leave a comment

Written by admin

Friday, September 12th, 2008. 16:50

Apple vs jailbreakers



The only way Apple can fix the exploit that the iPhone Dev Team has been using to Jailbreak iPhone’s and iPod Touch’s is to fix their hardware, but it seems Apple has figured out a way to program iTunes 8 to detect and prevent the Pwnage exploit. The screenshot below from iTunes 8 using a Pwned ipsw (with an unPwned device attached) is one example.

The Dev Team reacted promptly:

“The nice thing about iTunes decisions is that we can provide you with patches to counter them. We have one such patch already for Mac iTunes 8 for iPod touch. We’ll be working out the full suite of patches for all the combinations over the next week.”

Dev Team also published two interesting screenshots:




|
   

Leave a comment