iOS

Pattern_F_ teases “Pre-Jailbreak” for iOS 14.0-14.3 as CoolStar takes interest

Earlier in the month, security researcher @pattern_F_ from the Ant Security Lab Tweeted a demo video of what appeared to be a successful jailbreak attempt on an iPhone 11 running iOS 14.0. It was later revealed that the exploit used would potentially work on iOS & iPadOS firmware versions up to and including 14.3.

While it was unclear whether @pattern_F_ would release the aforementioned work to the general public, the news was quickly drowned out by the subsequent release of the cicuta_virosa kernel exploit for iOS & iPadOS 12.0-14.3 by @ModernPwner.

Hope rises for jailbreaking iOS 14 following release of new cicuta_virosa kernel exploit by ModernPwner

If you’re using iOS or iPadOS 14 right now, then your only means of jailbreaking would be with the checkra1n jailbreak on older A7-A11-equipped handsets up to and including the iPhone X.

Fortunately, the tides may change in the relatively near future as a newly released kernel level local privilege escalation (LPE) dubbed cicuta_virosa looks particularly promising for all handsets capable of running iOS or iPadOS 12.0-14.3.

Perseus lets mask-wearing jailbreakers unlock their iPhone with an Apple Watch

In case you haven’t already heard, Apple recently seeded iOS 14.5 beta to developers with a new feature that permits mask-donning users to more easily unlock their iPhone with Face ID, granted they’re wearing an unlocked Apple Watch. Without this feature, anyone wearing a mask would fail the native Face ID authentication method, compelling users to manually enter their passcode to unlock their device or to approve Apple Pay transactions or App Store purchases.

Given the gravity of just how frustrating it can be to be unable to use Face ID when governments around the world impose mask mandates while in public in an effort to curb the spread of COVID-19, it should come as no surprise that this feature received tons of praise from would-be users. On the other hand, jailbreakers would be stuck with older versions of iOS that don’t natively support the new authentication feature; at least, until now that is…

Ian Beer publishes details of kernel vulnerability for iOS 14.1 and lower

Matrix code hacked iPhone.

Ian Beer is a name much of the jailbreak community will recognize, and that’s because he’s a talented security researcher who discovered and published a plethora of different tfp0 exploits over the years — many of which went on to further jailbreak tool development.

Although Beer has been somewhat quiet these past several months, it seems it was for a good reason, as the hacker took to Twitter Thursday afternoon after publishing details for what appears to be a kernel vulnerability impacting iOS & iPadOS 14.1 and below.

Google is trying to work around Apple’s new privacy permission prompt

Google and its ad industry partners are not liking Apple's upcoming tracking prompt in iOS 14. The company's been dragging its feet with adding data privacy disclosures to its iPhone and iPad apps on the App Store. And now, Google says it will stop using a device’s unique IDFA (Identifier For Advertisers) to avoid showing the new privacy permission prompt in iOS 14.

AutoLockX prevents apps from overriding Apple’s Auto Lock feature

As many iPhone owners already know, the iOS operating system provides users with a feature called Auto Lock that, when configured by the end user, can automatically lock the handset after a pre-defined amount of idle time. In other words, when your handset isn’t being actively used, it goes to sleep to save power and to secure your important data.

Auto Lock takes effect in most circumstances, however there are a few exemptions in which the feature gets overridden, such as during media (video) playback and while playing certain games. Some users like this because of its convenience, while others find it to be a concern both in terms of battery life and data security.

Radio proximity security attack targeting up to iOS 13.5 detailed by Ian Beer

Matrix code hacked iPhone.

Accomplished security researcher Ian Beer, known for releasing a host of iOS exploits used by modern jailbreak tools, dropped a bombshell on Twitter late Wednesday evening after sharing a detailed blog post about a jaw-dropping radio proximity exploit affecting up to and including iOS and iPadOS 13.5.

The blog post summary goes on to explain that the hacker can remotely trigger kernel memory corruption through the execution of arbitrary code. Furthermore, it can force affected iOS and iPadOS devices in radio proximity to reboot with no user interaction needed or put privacy at risk by breaching user data or utilizing cameras and microphones without the user’s knowledge.  Scary indeed…