Hack

Security hole in Facebook app could lead to identity theft

Folks who use Facebook's iOS app might want to make sure to stay away from using public computers and charging stations for a while. Apparently a serious security glitch has been discovered in the software that could give hackers access to your account.

Security researcher Gareth Wright published a blog post yesterday that has raised some serious questions about how iOS developers are handling saved values — logins, etc. It seems that some apps are saving this data in plain, unencrypted text files...

Chronic: Two-minute iPhone crack valid only if passcode is 0000

Remember that two-minute passcode lock exploit we told you about last week? The one by Swedish security firm Micro Systemation behind the XRY app that can get to your data, including contacts, messages and call logs? Well, prominent hacker Chronic has proved them wrong. In an effort to set the record straight, the hacker posted a clarification on his website that pretty much debunks their claim.

Though the XYR tool taps a popular jailbreak exploit, Chronic is adamant the two minutes it takes to crack your passcode is only valid if you set your passcode to '000'. Conspicuously, that's the passcode the firm showed in their demo clip. Interesting enough, the original video of the exploit in action is no longer available on YouTube.

Watch this security firm break an iPhone’s passcode in under 10 minutes

We all know that iOS is one of the most secure mobile platforms on the market, but it's far from perfect. How else do you think hackers are able to find exploits in the software that allows us to jailbreak our devices?

With that in mind, it's no surprise that the folks over at Micro Systemation, a Swedish security firm, are able to bypass an iPhone's passcode lock in under 10 minutes. Don't believe it? Watch this video...

How to get Siri working on older devices the easy way, no proxy required

Ladies and gentlemen, this is by far the easiest way to get Siri running on your older devices like the iPhone 4, or iPod touch G4, and it requires no proxy server or meticulous setup.

As long as you have a generous friend that's willing to send you a file from their jailbroken iPhone 4S, you can have Siri running on an older device in just a few minutes.

Inside, we'll walk you through how to use AssistantConnect and AssistantConnect4S on video. It's extremely simple, just follow this brief tutorial...

i4Siri: a promising 3rd party Siri server

Ever since the possibility of a Siri Proxy server was first unveiled, it's been all the rage. The promise of being able to run Siri on older devices? Count me and about a million other people in.

Now you can hardly look around without seeing some blurb about a 3rd party Siri server, and although security (or lack thereof) is still a big concern, it's apparently not concerning enough to keep the masses of pre-iPhone 4S owners away.

Andrew Sheridan, one of the primary folks behind the i4Siri project reached out to me about a month ago asking me to try his Siri server. Here are some of the results of that trial...

Foxconn corporate servers hacked, classified information compromised

Foxconn, Apple's largest manufacturing partner, has been back in the media spotlight over the last few weeks. Last month, the New York Times pointed to the company in its report on the poor working conditions in Chinese factories.

Foxconn has since been the target of activists and protestors, but now it's found itself in the sights of a different breed. It seems that the world's largest component manufacturer has been hacked by a new group called Swagg Security...

Russian Siri “Port” Garners Mixed Results

Okay, so we've been debating running this story for quite some time now, but we figured since this involves Siri, that ultimately we should do so.

You're probably all aware of the so-called Siri port that runs on some Russian server hosted who-knows-where. Well, apparently it technically works, although many have had very mixed success in getting it to work.

Inside, we'll show you what you need to do to go about obtaining this "port" for yourself, although it's not without some disclaimers...

Add AirPlay to any TV with a $35 Mini Computer

AirPlay is possibly one of the unsung heroes of the iOS world, and if you own an iOS device and an Apple TV, then you really should be taking advantage of it. If you don't have an Apple TV then there may just be another option on the table.

Using a Raspberry Pi computer, it is actually possible to create your very own HDMI-enabled AirPlay-receiving machine which is so small you'll almost forget it's there.

Did we mention the whole thing costs just $35? Oh, that too...

Photo Booth Ported to the iPhone 4S

When Apple released the iPad 2 last year, the company boasted its new dual-core processor and front and rear-facing cameras. These improvements to the iPad 2 meant that App Store developers could release more elaborate and intensive applications for the tablet. Apple also took advantage of the opportunity themselves by launching a native Photo Booth application for the iPad 2.

Despite having nearly the same specifications as the iPad 2, including a dual-core processor and higher megapixel cameras, Apple chose not to include an iPhone version of Photo Booth on the iPhone 4S. But, that's all about to change...

Third-Party Apps Running Fullscreen on the Apple TV

We've been keeping you up to date on the developments surrounding third-party iOS apps and the Apple TV. Steven Troughton-Smith has been working with other developers to bring all kinds of iOS apps to the jailbroken Apple TV with the hopes that Apple will open up access to the App Store for its set-top box.

The first app to be shown publicly for his project is Jackoplane's Frequencies. As you can see, the app is running fullscreen on the Apple TV in the full 720p resolution.

Jailbroken Apple TV App Launcher in Action

For the last couple of days, we've been talking about how a couple of hackers, including Steven Troughton-Smith, have been working on bringing iOS applications to a jailbroken Apple TV near you.

While they appeared to have a few issues at first, things have been looking up for the group that was able to run apps in fullscreen 720p resolution. It gets even better, as shown in this video by Troughton-Smith...

pod2g Divulges More Details Behind Corona Exploit

iOS hacker pod2g has posted a very enlightening synopsis of how he was able to pull off his 5.0.1 untethered exploit. Citing Apple's blocking of the exploit methods used prior to iOS 5, he details the alternative methods used for the 5.0.1 untethered exploit and subsequent jailbreaks.

Apple has fixed all previous known ways of executing unsigned binaries in iOS 5.0. Corona does it another way.

Thus, for Corona, I searched for a way to start unsigned code at boot without using the Mach-O loader. That's why I looked for vulnerabilities in existing Apple binaries that I could call using standard launchd plist mechanisms.

For those of you interested in the low-level workings of the latest untethered jailbreak to hit iOS 5 devices, we highly recommend you check out pod2g's analysis on his blog.