Luca Todesco

Luca Todesco has released a WebKit RCE exploit that works on iOS 12.1.4 and earlier

Anthony Bouchard ∙ February 22, 2019

Before the days of Electra and unc0ver dawned upon us, there was Yalu, an iOS 10-centric jailbreak too by the talented hacker Luca Todesco (@qwertoruiopz); but apart from a few teasers here and there, the jailbreak community hasn’t heard much him since the Yalu days – that is, until now.

In a bombshell Tweet shared this week, Todesco released what appears to be a WebKit-based exploit that allows remote code execution (RCE) in web browsers with JIT. What’s more is that the exploit was only just fixed three days ago, which means it should be viable on all versions of iOS up to Apple’s latest release – 12.1.4:

Read More

Possible JailbreakMe-style jailbreak for iOS 4.0-12.0.1 in the works

Anthony Bouchard ∙ Updated November 12, 2018

If you remember the good old days when you could visit a web page in mobile Safari and swipe your finger over a virtual slider to achieve a jailbreak (yes, I’m pointing at you JailbreakMe), then we’ve got some good news for you.

iOS hacker and developer Sem Voigtländer (@UKERN Software) appears to be working on a JailbreakMe-styled tool that you can visit in mobile Safari that theoretically supports iOS firmware versions from 4.0 to 12.0.1 (*with some exceptions*).

Read More

Luca Todesco has jailbroken the iPhone XS Max

Anthony Bouchard ∙ October 7, 2018
iPhone XS jailbreak

Renowned security researcher Luca Todesco (@qwertyoruiop) is best known for his iOS 10-centric Yalu jailbreak tool. But Todesco flexed his hacking muscles once again over the weekend upon confirming how he successfully jailbroke Apple’s flagship iPhone XS Max.

The confirmation comes by way of a set of Tweets shared on the Twitter social media platform, which indicate that while Todesco has finished “hacking the XS Max,” he’s since returned to a stock installation of iOS.

Read More

Meridian iOS 10.x jailbreak released with support for all 64-bit devices

Anthony Bouchard ∙ August 7, 2018

After a lot of hype, the Meridian iOS 10.0-10.3.3 jailbreak tool with support for all 64-bit iOS devices has been released to the public on Tuesday.

Made possible by PsychoTea, Siguza, and various other contributors, the Meridian jailbreak is particularly significant. It works with all versions of iOS 10, whereas Luca Todesco’s Yalu jailbreak tool only supported iOS 10.0-10.2. Furthermore, Meridian even supports the iPhone 7, which Yalu did not.

Read More

extra_recipe+yaluX reaches Beta 3: now with Substrate

Joaquim Barbosa ∙ May 25, 2017

As many of you will by now be aware, the yalu+mach_portal tool for iOS 10.1(.1) is no more. Troubled as it was with stability issues stemming from the mach_portal exploit it used, many iPhone 7 and iPhone 7 Plus owners struggled with it, or chose not to use it at all. Luckily, that struggle is now over, as an updated tool entitled extra_recipe+yaluX has been released.

Read More

iPhone 7 and 7 Plus get a stable jailbreak on iOS 10.1.1 with extra_recipe+yaluX

Joaquim Barbosa ∙ Updated June 2, 2017

Developer xerub has just released an updated version of Ian Beer's mach_portal exploit, entitled extra_recipe. This new iteration should resolve the stability issues which have been plaguing iPhone 7 and iPhone 7 Plus users on the iOS 10.1.1 jailbreak.

Yalu creator Luca Todesco has in turn picked up the extra_recipe code and paired it with his Yalu jailbreak, compiling the project into a downloadable .ipa to create extra_recipe+yaluX, which effectively replaces his previous yalu+mach_portal tool.

Read More

Nintendo Switch vulnerable to iOS 9.3 WebKit exploit

Joaquim Barbosa ∙ Updated May 7, 2018

A little over a week after the release of Nintendo's new console, the Switch, reputed iOS hacker Luca Todesco has posted an image of an adapted version of his WebKit exploit running on the device.

As explained in a detailed proof-of-concept created by LiveOverflow, It seems that the Switch shipped with a somewhat antiquated browser, one whose version of WebKit was still vulnerable to the same exploit utilised by Todesco's browser-based jailbreak for iOS 9.3.x.

Read More

Support for iPhone 7 and iPhone 7 Plus still coming to Yalu jailbreak

Joaquim Barbosa ∙ February 4, 2017

Since our most recent post on the subject of Luca Todesco's Yalu jailbreaks for iOS 10, we have been receiving queries from our readers about the status of the iPhone 7 and iPhone 7 Plus. Although the two flagship devices were supported on the first version of the tool, which was for iOS 10(.1(.1)), they were omitted from the follow-up tool for iOS 10.0-10.2.

This has caused some to doubt whether these devices will ever see a stable build of the jailbreak, and whether they have been forgotten about. Fortunately, these worries are groundless; support for the iPhone 7 and iPhone 7 Plus is still very much planned.

Read More

Yalu102 beta 7: changelogs and installation advice

Joaquim Barbosa ∙ February 1, 2017

In a post from a few days ago, I outlined the changes which had been made to Luca Todesco's yalu102 tool as it passed through its beta builds, which at that point had reached Beta 3.

The jailbreak tool is now on its seventh iteration, and in this article I'll outline the changelog for each beta, as well as my opinion on the tool's current state.

Read More

How to jailbreak iOS 10.0-10.2 with yalu102

Joaquim Barbosa ∙ Updated April 25, 2019

Luca Todesco just announced the first beta build of his Yalu jailbreak for iOS 10.0-10.2. In this guide, I'll walk you through how to use the tool, should you want to try out the beta.

Bear in mind, this tool is first release and is not necessarily stable. It also does not support all devices yet. Whilst Todesco has said that it should already be more stable than the betas of Yalu for 10.0-10.1.1, a first build is a first build. Proceed at your own risk.

Read More