iPhoneRoot.com       

News tagged ‘security’


First video clips with the next iPhone 4G





Here are the first video clips  with prototype of the future iPhone 4G. We still have no proof it is real, so we post as rumors.

The video is interesting, so let's watch:


Read the rest of this entry »




|
   

Leave a comment, read comments [2]

MuscleNerd installed VNC-client on iPhone OS 4.0



Yesterday MuscleNerd uploaded a video of an iPhone 3GS that runs the iPhone OS 4 (beta version). Along with a new OS it also runs Veency, an unauthorized VNC-app for the iPhone (so it can be runned only on jailbroken devices).

That means that new OS can also be jailbroken by the methods that were used for the previous versions. We may only hope Apple won't make any security updates before its official release.




|
   

Leave a comment

iTunes 9.1 With iPad Support Is Released



iTunes 9.1

Yesterday Apple released iTunes 9.1. With a new version you can sync with your iPad to enjoy music, TV shows, movies and many more while you're on the go. The app will help you to organize and synchronize books that have been downloaded from iBooks on your iPad. The improvements also include more freedom in managing Genius Mixes and several security updates. To learn more visit Apple Support page.

To update your iTunes select Software Update in the Apple Menu at the top left of the screen.




|
   

Leave a comment

A bug in iPhone Safari will allow the firmware 3.1.3 jailbreak



Recently MuscleNerd, the member of DevTeam, reported the presence of an interesting security bug in Safari for the iPhone. It will probably allow a quick remote jailbreak of iPhone or iPod Touch simply by connecting the device to an external website created for this purpose.

The bug was discovered by two hackers Ralph Phillip and Vincenzo Iozzo, who won the prize of $15 000 during CanSecWest. Their initial idea was to use a web portal to do the exploit of the SMS database and retrieve it's content.




|
   

Leave a comment

Steve Jobs’s opinion of Flash on the iPad demo for WSJ



Steve Jobs

Steve Jobs called Flash technology a 'CPU hog ' and an "old technology" with numerous “security holes.” On the iPad demo with the Wall Street Journal that took place in New York Apple CEO attempted to persuade the WSJ honchos to bring the issue to the iPad.

The parties discussed one of the stumbling rocks- the inability of iPad to support Flash technology. The point is that the Journal invested a great deal of money in Flash enabling to deploy videos, slides and other interactive media.


Read the rest of this entry »




|
   

Leave a comment

Written by SimplyMax

Saturday, February 20th, 2010. 2:46

Hack the iPhone and get $10,000



pwn2own

The annual Pwn2Own hacking contest is coming up next month. During the event competitors will be given the chance to win cash prizes.

The competition will start on March 24 at the CanSecWest security conference in Vancouver, British Columbia. This year, hackers will take on an iPhone 3GS, a Blackberry Bold 9700, an unspecified Nokia smartphone running the Symbian S60 platform and a Motorola, most likely a Droid, powered by Google 's Android. A successful hack must result in code execution with little to no user-interaction. Any exploited phone wins its attacker $10,000 in cash.




|
   

Leave a comment

Apple Bans Hackers from iTunes App Store



It looks like Apple has started banning iPhone hackers from the iTunes App Store.

A few day ago Sherif Hashim, the iPhone developer and hacker, tweeted that he had found an exploit in the latest iPhone OS 3.1.3, which could enable the unlock on 05.12.01 baseband for iPhone 3GS and iPhone 3G. Yesterday he has been banned by Apple for the so called "security reasons". It seems that Apple is quite angry! Here is what Sherif gets when he tries to access App Store from his iPhone:

AppStoreBan

Sherif Hashim’s Tweets:

"Your Apple ID was banned for security reasons", that's what i get when i try to go to the app store, they must be really angry :) ))))

and guess what my apple ID was, "sherif_hashim@yahoo.com", what a fool was me not to notice :) )), can't help laughing, they are babies :) ))

Another iPhone hacker named iH8sn0w, the developer of Sn0wbreeze (PwnageTool alternative for Windows), tweeted saying he was also banned by Apple right after he released an exploit known as XEMN:

@sherif_hashim lol, they did that to my ih8sn0wyday[@t]googmail.com too. (right after I posted XEMN)…

For now Apple isn’t banning Jailbreakers - they’re banning people who actively work to find exploits in the iPhone software to create Jailbreaks for the rest of us.




|
   

Leave a comment

Apple Releases iPhone OS 3.1.3



iphone-os-3.1.3

Apple has just released new firmware 3.1.3 (7E18) for iPhone 3GS, iPhone 3G, iPhone 2G, iPod touch, iPod touch 2G and iPod touch 3G.

The update includes:

  • Improves accuracy of reported battery level on iPhone 3GS
  • Resolves issue where third-party apps would not launch in some instances
  • Fixes bug that may cause an app to crash when using the Japanese Kana keyboard
  • Other security updates (more info)

So this is a minor update, which fixing only the accuracy of the 3GS battery meter and the stability of some third-party app launches. This update is avaliable via iTunes.

New firmware 3.1.3 also introduces a new version of the baseband, the 05.12.01. So if you need unlock do not update! DevTeam also warns us:

If you care about your jailbreak and unlock, don’t update your device - 3G and 3G(S) owners should pay particular attention to this warning.
PwnageTool and redsn0w are not yet compatible with 3.1.3

Experimenters show that the latest version of redsn0w 0.9.2 is able to jailbreak iPhone 2G, iPhone 3G and iPod touch 1G. Just point it at the 3.1.2 IPSW (download here) after doing update or restore to firmware 3.1.3. Sounds like DevTeam will release an updated version of redsn0w that will handle firmware 3.1.3 officially. They say iPod touch 2G with firmware 3.1.3 is also jailbreakable.

Users report that unlock software, blacksn0w and ultrasn0w, doesn;t work with the new baseband.




|
   

Leave a comment

Scammers exploit Apple iPad fever



Newsworthy events are often targeted by hi-tech criminals. The iPad wasn’t the exception.

On the last week terms like “Apple” and “iPad” were among the most popular on different search sites and services because of the Steve Jobs’ presentation. That caused hi-tech scammers to tune their booby-trapped webpages to show up near the top of search results with that terms. So when the user enters such words as “Apple iPad rumor” or “Apple iPad size”, he has a probability to go to the sites that will peddle rogue security software to him.

Google results page

Moreover, some sites were tuned in such way they could define user’s OS and choose a different type of attacking it. Other sites send users to web pages that pose Google’s search engine and manipulate the results people see. The only way to stay protected from these scammers is to be attentive to strange sites and links, to have an up to date security software installed and the latest OS system patches.

[Via BBC]




|
   

Leave a comment

Written by SimplyMax

Tuesday, February 2nd, 2010. 16:51

iPhone 4G will support WiFi 802.11n



FINAL FINAL WiFi next logo

Next generation iPhone might have support for WiFi 802.11n. A recent Apple job posting shows that such software support might come soon:

  • Implementation of 802.11 a/b/g/n & related specifications.
  • 802.11i/802.1x Security protocols
  • Good understanding of wireless RF technologies & co-existence issues of 802.11 PHYs with other Wireless interfaces like Bluetooth.

The addition of Wireless N capabilities and support are quite logical. Hope to see iPhone 4G soon.




|
   

Leave a comment

Written by admin

Monday, January 4th, 2010. 1:02

Square Enables iPhone to Handle Credit Card Purchases



Jack Dorsey, the founder of Twitter, launched the new service named Square (still in beta) that allows you to make or take payments using your iPhone.

accept-payments

All this happens through an accessory able to process credit cards that is connected to the the device.

User just need to enter the amount, the security code and the signature directly on the touchscreen. There are no charges of any kind, except a U.S. cent on every transition, which is donated to charity.

square-lg2

The system is able to display a bill with lots of information: the map, the amount, the number of times that we used this system of payments in that particular store, and much more.

square-lg3

The system is currently being tested in the US. Maybe one day we will all use it everywhere.




|
   

Leave a comment

Written by admin

Wednesday, December 2nd, 2009. 17:55

1Password Pro for iPhone Is Free Until Dec 1st



Agile Web Solutions is offering 1Password Pro free until December 1st for iPhone and iPod touch users.

1Password will securely store your important information and can automatically log you into websites with a single tap. There's no need to remember the username, password, or even the website address.

1Password Pro is normally $7.99 and can be installed from the AppStore (link).


Feature List:

  • (pro) Special easy switching mode allows you to quickly copy-and-paste usernames and passwords to Mobile Safari.
  • (pro) Support for copying multiple field values (for example, both username and password) from 1Password to Mobile Safari.
  • (pro) Folders for better organization (in this version a desktop application required - sold separately)
  • (pro) Features coming soon: Favorites, MobileMe/WebDAV syncing, and more.
  • Securely store your website names and passwords so you never forget them again
  • Save important information like credit cards and membership numbers
  • Jot down other notes too sensitive for stickies or bar napkins
  • Synchronize it all with 1Password for Mac via Wi-Fi (sold separately, available at http://1password.com)
  • Automatically log into Web sites on iPhone and iPod touch to avoid remembering and typing usernames and passwords
  • Hardware-accelerated AES encryption and Auto-Lock keep your data protected even if your iPhone is lost or stolen
  • All cryptographic operations are performed using standard iPhone libraries to ensure there are no security gaps or backdoors
  • Two-layer defense with Unlock Code and Master Password to combine security and convenience
  • Data Backup & Restore option available on Mac, Windows and Linux.



|
   

Leave a comment

New iPhone Worm Wants User's Bank Passwords



apple_worm

A second iPhone worm virus has been found by security company F-Secure. It is specifically targeting people in the Netherlands who are using their iPhones for internet banking with Dutch online bank ING.

It redirects the bank's customers to a site with a log-in screen (phishing). The worm attacks "jailbroken" phones - a modification which enables the user to run non-Apple approved software on their handset. Only handsets with installed SSH (secure shell) are at risk. SSH is a file-transfer program that enables users to remotely connect to their phones. It comes with a default password, 'alpine' which should be changed.

Here is a tutorial how to change the default SSH password and minimize the risk.




|
   

Leave a comment

Apple extends the In-App Purchase to free applications



in-app-purchase

Apple has just announced that all iPhone developers can now use the In-App Purchase in free applications! In the past the use of these APIs was reserved only for commercial software.

This is great, because developers can completely eliminate the Lite version, creating only a limited free version with full function unlock through an in-app purchase. All this is also intended to provide greater security for developers.




|
   

Leave a comment

Firmware 3.0 security bug allows you to read passwords [Video]



A bug was found in firmware 3.0 that allows you to view hidden passwords. Here's the video demonstration:

As you can see it is easy, just erase a digit and shake the iPhone to see the number or character of the password. This bug had been fixed in firmware 3.1.




|
   

Leave a comment