Apple hasn’t held back from being vocal about the performance and security of its proprietary M1 chip – the tried-and-true powerhouse found inside of several different Mac computer models and even the highest-end 2021 iPad Pro. But as it would seem, not even the venerable M1 chip is hack proof…
Hacker and ZecOps security researcher @08Tc3wBB, known for contributions to the jailbreak community in the form of exploits that have been used in tools such as unc0ver by Pwn20wnd, appears to have made a momentous breakthrough with respect to the M1 chip.
The Odyssey Team updated its iOS 13-centric Odyssey jailbreak tool at the crack of dawn Friday morning to version 1.2, adding support for the new iOS 13.5.1-13.7 exploit that was released by FreeTheSandbox in collaboration with ZecOps just yesterday.
An announcement about the release was Tweeted by the Odyssey Team’s official Twitter account this morning with a link for avid jailbreakers to download the tool for themselves:
As promised, following security researcher 08Tcw3BB’s much anticipated presentation at HITB CyberWeek 2020, affiliated software security firm ZecOps has officially released an exploit for iOS & iPadOS 13.5.1-13.7.
The announcement, shared this Thursday afternoon via the ZecOps Twitter account, links to a blog post on the firm’s own website that discusses the exploit, how it works via a proof of concept, and how an attacker could use it:
Those paying close attention to the jailbreak community as of late would already know that there’ve been a number of recent developments that could eventually spell out the jailbreakability of iOS 13.5.1-13.7. If you missed the news, FreeTheSandbox is working on a public jailbreak supporting these firmware versions while security researcher @08Tc3wBB plans to release a dedicated exploit for use by the jailbreak community.
Neither of the aforementioned things have happened yet, but for those trying to keep tabs on everything as it happens, it might be worth mentioning that @08Tc3wBB plans to discuss his iOS 13.5.1-13.7 exploit on November 19th via HITB CyberWeek in a talk entitled “Jailbreaks Never Die: Exploiting iOS 13.7.”
Those eagerly waiting for a jailbreak with support for the concluding versions of the iOS & iPadOS 13 family before Apple officially released iOS & iPadOS 14 this Fall have two options, with the first being to wait for FreeTheSandbox to release the jailbreak they’ve been teasing for more than a month, or the second being to continue waiting for someone to pick up an exploit like the one just recently released by @_simo36.
If the FreeTheSandbox offering sounds like a better choice to you, then we’ve got some news for you. The official FreeTheSandbox Twitter account shared the following Tweet early Thursday morning to comment on the state of the jailbreak they’ve been working on:
If you’ve poked your nose in the jailbreak community’s trending news lately, then you’ve undoubtedly caught wind about a developing jailbreak for iOS 13.5-13.7 devices. Software security researchers associated with FreeTheSandbox first announced plans to release such a jailbreak at the end of September, and there have been a number of other teasers since then.
Just this afternoon, the @FreeTheSandbox Twitter account generated more excitement among jailbreakers after it turned to the community in search of potential testers. The Tweet, shown below, appeared seek users of certain types of devices running iOS 13.5.1 through 13.7, as these will be the handset and firmware combinations that the jailbreak supports when released.
Just under a month ago, security researchers with operation #FreeTheSandbox, an initiative started by security research firm ZecOps, revealed that they were working on a jailbreak with support for devices running iOS & iPadOS 13.5-13.7. The announcement garnered oodles of attention from the community, especially since current jailbreak tools like Odyssey and unc0ver only support up to and including iOS & iPadOS 13.5.
A few days later, the @FreeTheSandbox Twitter account said they were targeting a mid-November or early-December release for their jailbreak, and early Tuesday morning, the account posted a rather attention-grabbing teaser in the form of a simplistic Tweet that said, “Almost ready:”
There’s a lot going on in the jailbreak community as of right now. Not only is the checkra1n team actively attempting to jailbreak iOS & iPadOS 14 on many more devices, but hacker and security researcher @08Tc3wBB may also soon share details about an exploit viable for jailbreaking iOS & iPadOS 13.7 (the last versions of Apple’s previous-generation mobile operating systems).
If you find yourself more interested in the latter tidbit, which is likely the case if you stayed on the lowest possible firmware after iOS & iPadOS 14 got released, then you might be ecstatic to learn that @08Tc3wBB will present his latest research with security group ZecOps at the Black Hat Europe 2020 event.
The latest available jailbreaks at the time of this writing are Odyssey and unc0ver, each of which support up to and including iOS and iPadOS 13.5 on all devices. With that in mind, one Tweet in particular shared this Tuesday evening by the Twitter account @FreeTheSandbox appears to be turning quite a few heads in the jailbreak community.
The Tweet, illustrated in the screenshot above, appears to tip off that a yet-to-be-named jailbreak team is in the midst of forming and that it will work on a jailbreak tool that will support iOS and iPadOS 13.5 to 13.7.
iOS and iPadOS 14 have only been out for one week, but that hasn’t stopped jailbreak hopefuls for questioning when a universal jailbreak might launch with support for the two. Although the checkra1n team recently announced iOS and iPadOS 14 support for A9 and A9X devices with expected support for A10 and A10X in coming weeks, any and all newer devices are left out in the cold in this regard.
While no jailbreak team has outright stated that they would be taking on the burden of developing a universal iOS and iPadOS 14 jailbreak, some good news is that @ZecOps could be preparing to release a kernel-level local privilege escalation (LPE) that supports iOS and iPadOS 14. The announcement was shared via Twitter just this Wednesday afternoon: