Browser-Based iOS 9.1/9.2 Jailbreak Wins $1M Bounty, Will Be Sold for Corporate and Government Use

Discussion in 'Politics, Religion, Social Issues' started by MacRumors, Nov 2, 2015.

  1. MacRumors macrumors bot

    MacRumors

    Joined:
    Apr 12, 2001
    #1
    [​IMG]


    [​IMG]
    Earlier this month, exploit acquisition platform Zerodium debuted an iOS 9 bug bounty that would pay out up to three million dollars to hackers who managed to develop a browser-based untethered jailbreak for iOS 9, which it could then sell to clients interested in shelling out a lot of money to gain illicit access to iOS devices.

    The contest expired at the end of October, and Zerodium today announced one hacking team had successfully created a browser-based jailbreak for iOS 9.1 and iOS 9.2, the latest versions of iOS 9, earning $1 million.

    Zerodium foundar Chaouki Bekrar told Wired that the exploit developed by the hackers will be given to its customers, which include major technology, finance, and defense corporations, along with government agencies. The contest rules required the exploit to be achievable remotely without requiring user interaction beyond reading a text message or visiting a website via Chrome or Safari on an iOS device.
    Because it's selling the jailbreak ("likely" to U.S. customers only), Zerodium does not plan to report the vulnerabilities in the operating system to Apple, though Bekrar says the company may share the details at a later date. The jailbreak also won't be provided to the general public, but Bekrar says Zerodium announced the results of the contest to remind people that while iOS security is "very hardened," it's not unbreakable.

    Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

    Article Link: Browser-Based iOS 9.1/9.2 Jailbreak Wins $1M Bounty, Will Be Sold for Corporate and Government Use
     
  2. locoboi187 macrumors 6502a

    Joined:
    Oct 3, 2012
    #2
    This is very very bad. This is going to be abused by either our government or another malicious party. For example, all one would need to do is inject the exploit in an unencrypted WiFi to gain complete control over a phone since this is a browser based hack.
     
  3. TechGod macrumors 68040

    TechGod

    Joined:
    Feb 25, 2014
    Location:
    New Zealand
  4. William Gates macrumors 6502

    William Gates

    Joined:
    Oct 26, 2007
    #4
    So use your TouchID, 6 digit, or alphanumeric passcodes and this root will not be able to be executed against you.
     
  5. TechGod macrumors 68040

    TechGod

    Joined:
    Feb 25, 2014
    Location:
    New Zealand
  6. Speedman100 macrumors 6502

    Speedman100

    Joined:
    Jul 21, 2013
  7. melgross macrumors 6502

    Joined:
    Jan 23, 2004
    Location:
    New York City
    #7
    Folks, this is just a jailbreak, it's neither illegal, nor can it be applied to a phone whose owner doesn't want it, just like all the other jailbreaks over the years.
     
  8. Stella macrumors 604

    Stella

    Joined:
    Apr 21, 2003
    Location:
    Canada
  9. agsystems macrumors 6502a

    Joined:
    Aug 1, 2013
    #9
    From the technical side, I am interested on how this was done - a browser based exploit escape the sandbox and was able to execute as root - sounds like a great accomplishment - god blessed whoever they will target with this.
     
  10. Z400Racer37 macrumors 6502a

    Joined:
    Feb 7, 2011
    #10
    holy crap that's crazy......

    "one hacking team" = NSA
     
  11. SSD-GUY macrumors 6502a

    Joined:
    Sep 20, 2012
    Location:
    London, UK
  12. BittenApple macrumors 6502a

    BittenApple

    Joined:
    Nov 29, 2008
    #12
    Yes it can. More scary is the fact that it can install software without you knowing or being able to tell the difference.
     
  13. Crosscreek macrumors 68030

    Crosscreek

    Joined:
    Nov 19, 2013
    Location:
    Margarittaville
    #13
    Just goes to show that nothing is sacred or safe in cyberspace and is without conscience.
     
  14. AtheistP3ace macrumors 6502a

    AtheistP3ace

    Joined:
    Sep 17, 2014
    Location:
    Philly
  15. FatMax macrumors 6502

    FatMax

    Joined:
    Jun 28, 2007
    Location:
    Norway
  16. marioman38 macrumors 6502a

    marioman38

    Joined:
    Aug 8, 2006
    Location:
    Elk Grove, CA
    #16
    Is this credible or do they just want business and notoriety
     
  17. KALLT macrumors 601

    Joined:
    Sep 23, 2008
    #17
    What do you think a jailbreak is? It's just a fancy name for an exploit that you want to use. If applied against your will or without your knowledge it is simply malware.
     
  18. 2457282 Suspended

    Joined:
    Dec 6, 2012
    #18
    Hopefully, Apple who is sneaky is actually one of the customers and will plug the hole quickly. Yes wishful thinking, we might get a plug if the hole goes public and then probably in iOS 10. (SMH)
     
  19. PowerBook-G5 macrumors 65816

    PowerBook-G5

    Joined:
    Jul 30, 2013
    Location:
    The United States of America
    #19
    Couldn't Apple buy this, fix the issue, and push out an update?

    Edit: You beat me, @Cuban Missles :^)
     
  20. sziehr macrumors 6502a

    Joined:
    Jun 11, 2009
    #20
    So the nice thing that this is happening to apple is they will now patch it in the very next release. If this was found in the root code of android you might never see a patch like stage fright and stage fright 2.
     
  21. parapup, Nov 2, 2015
    Last edited: Nov 3, 2015

    parapup macrumors 65816

    parapup

    Joined:
    Oct 31, 2006
    #21
    Umm no - if the below quote doesn't make it clear, I am not sure what will -

    Jailbreaks aren't magic fairy dust that only do their magic when you want them to - they are plain old root exploits that anyone can use against you without your knowledge - compromised ad servers, websites etc can install software without you knowing - just by visiting the wrong site / URL, knowingly or unknowingly.
     
  22. niji macrumors 6502a

    niji

    Joined:
    Feb 9, 2003
    Location:
    tokyo
    #22
    uninstalling Chrome browser on my iPhone today.
    the winning team for the hack probably gains entry through the Chrome browser, not Safari on iOS.
     
  23. goobot macrumors 603

    goobot

    Joined:
    Jun 26, 2009
    Location:
    long island NY
    #23
    All Apple has to do is have a few employees fake working for a new made up company to get the exploit and then patch it in 9.2
     
  24. Trik macrumors regular

    Joined:
    Jan 18, 2011
    Location:
    Washington, DC
    #24
    I think there is some confusion about what a jailbreak is... "jailbreaking" your phone IS something you can choose to do for sure, but it is also the method by which hackers will use to get at the information on your phone or install malicious code to monitor your usage after the fact. This is an untethered jailbreak that runs via a URL. So an email with a short URL can jailbreak your phone, and you wouldn't even know it happened unless you're constantly looking for that sort of thing.
     
  25. pubwvj macrumors 68000

    pubwvj

    Joined:
    Oct 1, 2004
    Location:
    Mountains of Vermont
    #25
    The won't say who one, they won't say how it is done because... (drum roll please) ...they failed.
     

Share This Page