A small update surfaced this Tuesday evening for everyone that has been avidly looking forward to the public release of Linus Henze’s jailbreak untether for iOS & iPadOS 14.5.1 and below.
Hacker Justin Sherman announced over the weekend that a proof of concept and a full write-up for a kernel-level exploit supporting iOS & iPadOS 14.6-14.7 could be imminent, but what does it mean for iPhone and iPad owners, especially those who wish to use it for jailbreaking?
The Pangu Team is a name you might remember if you’ve been jailbreaking iPhones and iPads since ye olde days of iOS 9. Despite not releasing a public jailbreak since then, the Pangu Team continues to be hands-on with respect to iOS-related security research.
A wonderful example of that happened just this weekend in Chengdu, China at the TianfuCup (TFC) 2021, where the Pangu Team appears to be taking home the first-place prize in the contest by successfully pwning Apple’s brand-new iPhone 13 Pro running iOS 15 via a remote jailbreak. The earnings? A juicy $330,000 cash prize.
Security researcher Saar Amar on Monday published a proof of concept (PoC) of a kernel-level vulnerability dubbed CVE-2021-30883 that was patched by Apple’s iOS & iPadOS 15.0.2 software updates.
The write-up reignited hope that we’d see a jailbreak for recent iterations of Apple’s mobile operating systems, and perhaps unsurprisingly, some security researchers have already started going hands-on with it.
When Apple released iOS & iPadOS 15.0.2 on Monday, one of the major changes was a security patch for a vulnerability reported in IOMobileFrameBuffer in which memory corruption could have resulted in an app executing arbitrary code with kernel-level privileges.
Facebook will nudge teens on Instagram away from harmful content as well as encourage children to take a break from its toxic photo-sharing platform for a while.
The Facebook-owned WhatsApp messaging service is now testing end-to-end encryption for iCloud backups. The feature was designed to protect your chat archive while it's being uploaded to or downloaded from iCloud and stored on Apple's servers (at rest).
You can now choose between a trio of different duration presets for WhatsApp's disappearing messages, such as 24 hours and 90 days, instead of the default 7-day timer.
In a major reversal, the App Store's Report a Problem link is back after being removed without explanation a few years ago. This time around, however, the feature includes a pair of significant improvements that are aimed at better tackling scams and fraud on the platform.
Apple has boosted the security and privacy of iCloud services further by switching end-to-end encryption for Safari bookmarks, preventing anyone but you from accessing them.
Apple has acknowledged that it's aware of a serious vulnerability plaguing its personal item tracker, dubbed AirTag. The nasty bug allows nefarious actors to redirect the person who finds and scans a lost AirTag to a phishing website instead of the Apple one. The company has confirmed it is working on a fix, saying the solution will be arriving in the next software update.
It was only about a week after Apple released iOS & iPadOS 14.8 with patches for the zero-click exploits that were actively weaponized in the wild and by the Pegasus spyware that iOS developer Mario Cheung released a jailbreak tweak called FORCEDEXIT to address the issue on pwned handsets running affected firmware versions.
Today, Cheung seems to be at it again with a new and free jailbreak tweak dubbed EntitlementFix, which allegedly fixes three additional 0-day exploits known to impact jailbreakable versions of Apple’s mobile operating systems.