IBoot source download: Apple hits biggest leak ever with DCMA

09 February, 2018, 05:27 | Author: Grady Montgomery
  • Image Apple

Apple indirectly confirmed that the source code posted on GitHub was legit after it issued a DMCA takedown under penalty of perjury on Wednesday. The leak of such proprietary and confidential software could make it easier for hackers to find and exploit flaws in the operating system.

As Motherboard explains, iBoot is the program responsible for ensuring that the operating system of the device loads correctly.

The iBoot code handles the first steps in the iPhone and iPad startup process including verifying the iOS kernel (the operating system's core) is valid and properly signed.

Apple has shot down the centrality of an obvious source code spill for the iPhone's iBoot bootloader which stacks the working framework. These types of jailbreaks used to be common on older versions of iOS, but as Apple has increased the security of their operating system with features such as the Secure Enclave Process chip, it's been more and more hard to unlock phones in this manner.

The event captured the attention of several security experts, including one who told Motherboard that it was the 'biggest leak in [Apple's] history'. "It's a huge deal".




In other words, Apple's multi-layered approach to keeping iOS secure involves a lot more safeguards than what you'd see in a leak like this, however it may have made its way to GitHub.

As Macrumors points out, modern iOS devices have Secure Enclave processor protection, which hardens device security. He also pointed out that the leaked code "aligns with the code he reverse engineered himself".

Apple has always been very protective of its source code in order to prevent vulnerabilities, which could be exploited by malicious third-parties, from being discovered.

One of Apple's most guarded secrets has reportedly been leaked online by an anonymous source. This source code leak could change all that, though.

The source code was eventually taken down, after Apple filed a copyright takedown request with GitHub. But such a hypothetical vulnerability is unlikely to allow an attacker to bypass the cryptographic security on the iOS device itself, so it may be of less use to individuals trying to bypass a phone owner's password or PIN.

Recommended:

  • Olympic team's chefs mistakenly order 15000 eggs

    Olympic team's chefs mistakenly order 15000 eggs

    But a mistake occurred when 15,000 eggs were delivered to their kitchens, instead of the 1500 intended. Norway has a total of 109 athletes competing in the 2018 Winter Olympics in PyeongChang, Korea.
    Trump Wants to Display Military's Might With Grand Parade

    Trump Wants to Display Military's Might With Grand Parade

    Bush's "Mission Accomplished" stunt was crafted to celebrate, quite inaccurately, the end of "major combat operations" in Iraq. The US capital has previously only held large military displays to mark significant occasions such as victories in war.
    Pakistan court sentences man to death in false blasphemy and lynching case

    Pakistan court sentences man to death in false blasphemy and lynching case

    He was attacked after a debate on religion at his dormitary, with an investigation ruling that Khan did not engage in blasphemy. Even a rumour of blasphemy can spark mob violence and there have been cases of people misusing the law to settle scores.
  • Water Security Expert Available on Cape Town's Water Crisis

    Water Security Expert Available on Cape Town's Water Crisis

    People restrict how often and how long they shower, wash clothes and flush toilets in order to conserve water. Agriculture had been allocated 58-million cubic metres of water, he said.
    LA police want to interview Robert Wagner about Natalie Wood drowning

    LA police want to interview Robert Wagner about Natalie Wood drowning

    Wagner has denied any involvement in Wood's death and his attorney has said he fully cooperated with investigators. Aside from Wagner's refusal to speak, Corina said they are facing another foe: time . " Time is our enemy".
    Red Dead Redemption 2 Battle Royale Mode And Other Big Leaks

    Red Dead Redemption 2 Battle Royale Mode And Other Big Leaks

    According to the documents received by TrustedReviews, the online mode will be more ambitious than in any previous Rockstar title. If Red Dead Redemption 2 Battle Royale mode is a reality, we can be sure that Rockstar will try to put its own spin on it.
  • Joaquin Phoenix in talks to play Joker in upcoming origin movie

    Joaquin Phoenix in talks to play Joker in upcoming origin movie

    Phoenix is one of the most talented actors working today and immediately brings a certain amount of intrigue to this wild idea. Jared Leto is still expected to play the Joker in DC Films' planned Suicide Squad sequel.
    How bad is flu in PA?

    How bad is flu in PA?

    But health officials say they can not accurately assess the effectiveness of the vaccine for at least another couple of weeks. The Arkansas Department of Health is now reporting 122 flu-related death in the state, the worst in 17 years.
    Koeman named new Netherlands boss

    Koeman named new Netherlands boss

    Koeman's first press conference was immediately announced by the KNVB, and he was set to speak about his new role at 3.30pm GMT. Koeman won Euro 88 as a Netherlands player, part of a team that also included Ruud Gullit, Frank Rijkaard and Marco van Basten.
  • Tronc sells LA Times and other newspapers in $500m deal

    Tronc sells LA Times and other newspapers in $500m deal

    D'Vorkin will be more focused on clicks and advertising, rather than pursuing ambitious journalism". Last month, the Times' journalists voted overwhelmingly to form a union, according to the Post.
    IPhone X bug prevents users from answering calls

    IPhone X bug prevents users from answering calls

    If it can't detect your battery status, it will also warn you to replace your battery at an authorised service provider. So, if it was a false alarm, you should be able to continue using your iPhone at maximum performance all the time.
    Tributes paid to Munich victims at Old Trafford memorial service

    Tributes paid to Munich victims at Old Trafford memorial service

    Around 6000 supporters attended the service, which included a minute's silence at 15:04 - the time of the crash. They went on to win a European Cup 10 years later at Wembley.


Popular

Sexual assault lawsuit filed against Georgia Tech coach Josh Pastner
Pastner filed a defamation suit previous year , after Bell claimed Pastner asked Bell to pay illegal benefits to players. The alleged incident happened in February of 2016 while Pastner was still the men's basketball head coach at Memphis.

Volatile stocks spark record one-day rise in fear index
Many traders will use a combination of moving averages with different time frames to help review stock trend direction. As of this writing, both XIV and SVXY were halted for trading, but were expected to resume trading later in the day.

Winter Olympics: Shani Davis not expected to march in opening ceremony
Voting for Hamlin and speedskater Shani Davis was tied for the honor, which led to the victor being chosen by a coin toss. "I am an American and when I won the 1000m in 2010 I became the first American to 2-peat in that event", Davis tweeted.

Southwest plane slides to edge of taxiway in Baltimore airport, FAA investigating
A Southwest plane slid sideways on the taxi-way Wednesday while preparing for take-off at Baltimore-Washington International Airport.

Trump's latest Peter Strzok 'BOMBSHELL' is just as dubious as its predecessors
She noted that the texts also raise questions about former President Obama's interest and involvement in the Hillary Clinton email investigation.

Unusual ancient spider with tail discovered by scientists in Myanmar
Like today's horseshoe crabs and ginkgo trees, it was a holdover from an earlier period in evolutionary history. The new species was discovered in the jungles of Myanmar, which yields almost 10 tonnes of amber every year.

Michel Barnier tells Britain: 'Time has now come to make a choice'
The EU's top Brexit negotiator, Michel Barnier recently said financial services will not be included in any deal. Hardliners warn that a customs arrangement could hamper Britain concluding trade deals with other countries.

Even Meghan Markle and Prince Harry Have to Work on Valentine's Day
And when asked if she thinks Meghan understands Samantha, and her situation, Samantha simply replied: "No". PRINCE Harry and Meghan Markle's relationship played out like a movie - and now it's going to become one.

Miguna declines to take plea at Kajiado Court
The government suspended the passports of 14 opposition leaders including strategist David Ndii and financier Maina Wanjigi. This came in the backdrop of Miguna's decline on taking a plea at the Kajiado Court where he had been arraigned earlier.

Treasurys are surging as stocks get slammed
Japan's Nikkei stock average dropped more than 6 percent in early afternoon trading, after falling 2.5 percent a day earlier. Treasury yields fell from four-year highs on Monday as the selloff in equity markets sparked demand for low risk debt.