Security

PsychoTea’s iOS 11-12.1.2 kernel exploit for A7-A9 devices now released, detailed writeup imminent

Anthony Bouchard ∙ March 1, 2019

There’ve been so many kernel exploit releases for the iOS platform as of late that our heads are still spinning, but that’s pleasant news if you’re a jailbreak aficionado, because it gives our respected jailbreak tool developers more resources to work with.

The latest kernel exploit reportedly comes by way of hacker PsychoTea, and it has been named machswap. The exploit appears to be viable on all A7-A9 devices running iOS 11.0-12.1.2, which could make it a worthwhile candidate for modern jailbreak tools such as Electra or unc0ver.

Prevent specific apps from accessing the internet over Wi-Fi with ConditionalWiFi4

Anthony Bouchard ∙ February 28, 2019

Your iPhone lets you prevent apps from accessing the internet over a cellular connection right out of the box, but the same can’t be said about Wi-Fi. On the other hand, those with jailbroken iOS 12 handsets can finally do something about that with the help of a jailbreak tweak called ConditionalWiFi4 by Andrew Wiik.

As you might’ve discerned already from the tweak’s name, ConditionalWiFi4 lets you choose which apps can access the internet over your iOS device’s Wi-Fi connection. Some examples where this might come in handy include:

IntelligentPass 2 lets you use your iPhone without a passcode in ‘low-risk’ areas

Anthony Bouchard ∙ February 27, 2019

Most people use passcodes to protect their handsets from unwanted users for privacy reasons. Although modern handsets incorporate some form of biometric authentication in place of the passcode, whether that’s Face ID or Touch ID, your device still uses a passcode as a backup for when either of those stops working.

But while your passcode can keep your handset’s data safe in high-risk areas, it’s also true that some places (such as your home) pose little or no risk. That’s why iOS developers Luke Muris and Geometric Software released a new jailbreak tweak dubbed IntelligentPass 2.

Security flaws in both 4G and 5G networks let attackers intercept calls & track locations

Christian Zibreg ∙ February 25, 2019

New security flaws that have been discovered in both 4G and the upcoming 5G cellular networks make it easy for an attacker to eavesdrop on your phone calls and track your location.

Luca Todesco has released a WebKit RCE exploit that works on iOS 12.1.4 and earlier

Anthony Bouchard ∙ February 22, 2019

Before the days of Electra and unc0ver dawned upon us, there was Yalu, an iOS 10-centric jailbreak too by the talented hacker Luca Todesco (@qwertoruiopz); but apart from a few teasers here and there, the jailbreak community hasn’t heard much him since the Yalu days – that is, until now.

In a bombshell Tweet shared this week, Todesco released what appears to be a WebKit-based exploit that allows remote code execution (RCE) in web browsers with JIT. What’s more is that the exploit was only just fixed three days ago, which means it should be viable on all versions of iOS up to Apple’s latest release – 12.1.4:

Facebook ends its controversial Research app, pulls Onavo VPN spyware for Android

Christian Zibreg ∙ February 22, 2019

Following scandalous revelations that it was using the Research and Onavo Protect apps to spy on unsuspecting Apple users, the social network has now ended its unpaid market research programs and removed Onavo VPN for Android from Google's Play store, too.

Facebook promises a prompt fix for WhatsApp’s Face/Touch ID vulnerability

Christian Zibreg ∙ Updated March 22, 2024

WhatsApp recently brought an optional feature for locking your chats with Face ID or Touch ID, requiring a positive biometric scan to unlock the app, but it can be bypassed through iOS's system-wide Share sheets. Facebook is aware of the problem and has promised a prompt fix.

How gambling and porn apps sneak their way past Apple’s strict App Store review process

Christian Zibreg ∙ February 12, 2019

It's not just Google and Facebook: some smaller developers are openly abusing Apple's Enterprise Certificate program too by disguising their gambling and pornography apps as legitimate offerings meant for companies that distribute employee-only apps on App Store.

Tihmstar releases v3ntex, a tfp0 exploit for iOS 12 devices

Anthony Bouchard ∙ February 11, 2019

Just under two weeks ago, hacking guru tihmstar released v1ntex, a voucher_swap-like exploit for 4K devices that contributed to iOS 11.4.x support in both the Electra and unc0ver jailbreaks. But just this morning, tihmstar released another exploit dubbed v3ntex, which allegedly supports iOS 12 devices.

Tihmstar shared his exciting announcement via Twitter Monday morning with proof of the exploit, adding that he only tested his v3ntex exploit on an iPhone 6 running iOS 12.1.2 and that it could likely still do with some improvements: