News tagged ‘Unlock & Jailbreak’
Geohot, the famous iPhone hacker and the creator of different jailbreak and unlock utilities (purplera1n, blackra1n and blacksn0w), is now working on a new jailbreak utility. It will support untethered jailbreak for all devices with the latest bootrom and the latest firmware. This includes iPhone 3GS and iPod Touch 3G.
Here is what Geohot writes in his blog:
The jailbreak is all software based, and is as simple to use as blackra1n. It is completely untethered, works on all current tethered models(ipt2, 3gs, ipt3), and will probably work on iPad too.
Don't ask about a release date. You won't make it happen any sooner.
It is still unclear if he used one of the recent iPhone Safari hacks to gain control of the device or if this is something else.
Here is a teaser video:
Recently MuscleNerd, the member of DevTeam, reported the presence of an interesting security bug in Safari for the iPhone. It will probably allow a quick remote jailbreak of iPhone or iPod Touch simply by connecting the device to an external website created for this purpose.
The bug was discovered by two hackers Ralph Phillip and Vincenzo Iozzo, who won the prize of $15 000 during CanSecWest. Their initial idea was to use a web portal to do the exploit of the SMS database and retrieve it's content.
A shop in Istanbul, Turkey has posted a video demonstration of how they perform a 'hardware unlock' on the iPhone 3G with firmware 3.1.3 and new baseband. The video shows ElektroPower performing a hardware teardown to reflash the Baseband to 04.26. Nice!
Today Apple began selling iPhones without AT&T plan. Apple's new policy is that anyone can walk into an Apple Store and pick up an iPhone 8GB for $499, 16GB for $599 and 32GB for $699. They allow one unit per customer per day, up to 10 iPhones.
The iPhones are still locked to AT&T's network. Of course, these devices will be sold with the latest baseband which is not yet unlockable; however, you can use RedSn0w to perform a tethered jailbreak.
This modified version of BlackSn0w works for iPhones upgraded with PwnageTool or Sn0wbreeze, preserving the baseband version 05.11.07. Users who have updated to OS 3.1.3 by any other method have the 05.12.01 baseband so BlackSn0w and UltraSn0w will not work.
This new version of BlackSn0w will be very useful for iPhone 3GS OS 3.1.3 / Baseband 05.11.07 users who can’t downgrade to earlier versions but still need unlock.
According to iHackintosh, this new version also fixes a small bug making WiFi much more stable.
Blacksn0w RC2 will be available on ModMyi repo soon. If you don't want to wait just add the source http://cydia.pushfix.info/ to Cydia and install it now.
Important: Blacksn0w for 3.1.3 is still in RC stage and there may be some issues or bugs. This is not an official update performed by Geohot, who has clearly indicated that he will not be updating any tools for the 3.1.3 firmware.
Yesterday morning began with shocking news about lawsuit that was filed by Apple against HTC. As it turned out, Cupertino's company is accusing smartphone manufacturer of infringing 20 Apple patents tied to the iPhone. Google Nexus One, Droid Eris, T-Mobile G1, Touch Pro2, Touch Diamond and the Imagio are listed as exhibits in the litigation.
The number of jailbreak utilities for iPhones and iPod Touches with the latest iBoot is dramatically increasing. All of them are FAKE. Some of them will fill your computer with viruses, which is not good.
gull1hack, spartanbr3ak, br0k3n_appl3 are just some of these new programs that in one way or another deceive the user and then run malicious code. We therefore ask you to stay away from ANY such software. Some time in the future GeoHot or DevTeam will release new jailbreak and unlock software. Other than that is fake and dangerous. Install only programs you trust or the ones recommended by iPhoneRoot.
Here is a twitter comment from DevTeam:
A few days ago in an IRC channel the DevTeam and GeoHot discussed and summarized the state of the exploits found in the new baseband 05.12.01 in firmware 3.1.3. GeoHot explains that an exploit that had previously discovered and used in blacksn0w is still present in the new firmware released by Apple. It appears that both he and MuscleNerd are working on the same exploit, and if this were true, it would be a really good start to team up and release a new unlock tool.
Here is their discussion:
< visnet_ > What does geohot tweet mean?
< %geohot > its my bb exploit for safekeeping
< %Par4doX > geohot: did you turn that over to the dev team or are you doing something with it?
< %geohot > my days of turning things over are done
< %geohot > i hope its different from the one they have
< %geohot > but they prob already have it
< %geohot > its the one i orig wanted to release blacksn0w with
< %Par4doX > it’s still there in the new bb
< %geohot > yep, just checked
< %geohot > but then opted to use xemn since it was public
< Evan > Oo, it carries over from 05.11 to 05.12?
< %geohot > why wouldn’t it, apple doesn’t fix things proactivly
< @MuscleNerd > geohot we prob should figure out a way to know if we have same exploit double blind, otherwise we may release 2 different ones at same time
< %geohot > any suggestions?
< @MuscleNerd > not sure how to do that without making it easy to brute force tho
< %geohot > yea, i salted the hash
< @MuscleNerd > yeah
< @MuscleNerd > hmm maybe if we both hash the stack dump
< @Confucious > Can you two take this out of public sight?
< @MuscleNerd > the stack itself, not the header before it or the registers after it
< Her > muscle: any notice about the exploits are the same ?
< %geohot > we are working on it
< %geohot > cryptography, perfect for people who don’t trust each other
Auto-lock setting can be an alternative method of saving the battery, but it is not convenient to lock and unlock the device while you are waiting for something. It also provides power save by backlight reduction if not to use the phone for a time predefined by the user.
As expected iH8sn0w released f0recast, the application that allows us to know a lot of useful information about all we can do with our iPhone.
Just connect the iPhone with the cable to see what is version of the baseband or iBoot. The utility will also give valuable information if we can perform a jailbreak (tethered or untethered). It will also tell if the Phone is unlockable and will give a suggestion what unlock software can be used.
You can download it directly from
MuscleNerd just posted interesting comment on Twitter, saying that the application is inaccurate regarding to the iPhone 3GS. There might be a new update soon. For all other devices the application works just fine.
iH8sn0w, through a new tweet, informs that his new utility f0recast will be released tonight.
There are many different iPhone and iPod Touch models and firmware versions for them. Each device has it's own bootrom, bootloader, iBoot and baseband versions that determine if user can perform jailbreak and unlock. So it is quite complicated for users to answer a simple question: "Is my device jailbreakable?". f0recast will solve this problem.
f0recast is a small Windows application that will able to give a straight answer if the iPhone or iPod touch is able to be jailbroken. Just connect your iPhone, launch the app and push a button.
f0recast is only an informational tool which determines if your device can or cannot be jailbreaked. It will NOT jailbreak your device.
It looks like Apple has started banning iPhone hackers from the iTunes App Store.
A few day ago Sherif Hashim, the iPhone developer and hacker, tweeted that he had found an exploit in the latest iPhone OS 3.1.3, which could enable the unlock on 05.12.01 baseband for iPhone 3GS and iPhone 3G. Yesterday he has been banned by Apple for the so called "security reasons". It seems that Apple is quite angry! Here is what Sherif gets when he tries to access App Store from his iPhone:
Sherif Hashim’s Tweets:
"Your Apple ID was banned for security reasons", that's what i get when i try to go to the app store, they must be really angry ))))
and guess what my apple ID was, "firstname.lastname@example.org", what a fool was me not to notice )), can't help laughing, they are babies ))
@sherif_hashim lol, they did that to my ih8sn0wyday[@t]googmail.com too. (right after I posted XEMN)…
For now Apple isn’t banning Jailbreakers - they’re banning people who actively work to find exploits in the iPhone software to create Jailbreaks for the rest of us.
Fuzzyband is an application that can downgrade the baseband for iPhone 3G. Recently it has been updated to include the support for firmware 3.1.3 baseband 05.12.01. It works only with bootloader 05.08 (early iPhone 3G).
Why do users need to downgrade the baseband? The answer is simple: if they accidentally upgraded the new firmware and need to run unlock software (blacksn0w and ultrasn0w). Unlocked iPhones do not need Fuzzyband. iPhone 3GS users cannot downgrade baseband with Fuzzyband.
Fuzzyband is available for jailbreaked iPhones in Cydia (repository BigBoss, category "System" ).
Sherif Hashim has discovered an exploit which may allow unlock of the latest iPhone OS 3.1.3 baseband 05.12.01. Such unlock utilities for previous baseband versions were called blacksn0w, ultrasn0w и and yellowsn0w. MuscleNerd, the member of DevTeam, has already confirmed it is working. So the timing of the unlcok release is totally up to them right now.
Here is an official update from DevTeam:
"We’ve started to look at his crash but it’s a long road between any given crash and a fully working unlock, and we couldn’t put an ETA on it even if we wanted to. It’s not even guaranteed that an working unlock will come from this particular crash — it’s just too early to tell."
The iPhone Dev-Team has released PwnageTool 3.1.5 for Mac OS X. It allows iPhone and iPod Touch users to safely upgrade to firmware 3.1.3. With PwnageTool you can preserve jailbreak and ultrasn0w unlock. But if you’re using the blacksn0w unlock with baseband 05.11.07 you will need to stay at firmware 3.1.2.
PwnageTool 3.1.5 creates a custom 3.1.3 IPSW for the following devices:
- iPhone 2G
- iPhone 3G
- iPhone 3GS with early bootrom
- iPod touch 1G
- iPod touch 2G with early bootrom
Warning! Don't try to use this tool if you have iPhone 3GS with firmware 3.1.3 - it just won't work. If you have iPod Touch 1G, iPhone 2G or factory unlocked iPhone 3G , try to use redsn0w - is would be much easier.
You can download PwnageTool 3.1.5. here.