'Hacking Team' Data Breach Confirms Firm's Ability to Infiltrate Jailbroken iPhones - MacRumors
Skip to Content

'Hacking Team' Data Breach Confirms Firm's Ability to Infiltrate Jailbroken iPhones

Cybersecurity firm Hacking Team experienced a data breach earlier today, resulting in 400 GB of its documents being leaked onto the Internet, reports The Guardian. The documents confirm Hacking Team's ability to infiltrate and monitor jailbroken iPhones on behalf of government law enforcement agencies like the NSA, as noted by Macworld.

hackingteam

Much has been speculated before and after Edward Snowden’s release of a trove of National Security Agency (NSA) documents in 2013 about the capabilities of the United States’ agencies as well as those of allies and enemies. The Hacking Team dump reveals quite a bit more about the routine functions of third-party suppliers into that ecosystem, including specifically enumerated capabilities.

iOS users should therefore take note that the long-running concern that jailbroken iPhones and iPads were susceptible to vulnerabilities that could include access by so-called state actors appears to be confirmed by the data breach.

Hacking Team's software would need to be installed on a jailbroken iPhone, but the firm has the ability to jailbreak and infect a phone with its software via a malware-infected trusted computer the phone is connected to. In the firm's pricing list [PDF, requires Chrome], it's revealed hacking an iOS device costs €50,000 ($55,242) and includes "features" like Skype, WhatsApp and Viber chats, location, contacts and lists of calls. However, this service also includes a prerequisite of a jailbroken iPhone.

Hacking Team uses a legitimate Apple enterprise signing certificate, which is used by corporations to create software that can easily be installed on employee devices, combined with jailbroken iOS devices to bypass iOS app installation protections. Additionally, Hacking Team developed the ability to create a malicious Newsstand app that could capture keystrokes and install monitoring software.

Last year, researchers working independently of each other at Kaspersky Lab and Citizen Lab discovered components of Hacking Team's tools and how they were used by government agencies to steal data from mobile devices, but the full extent of the software hadn't been confirmed until now.

Data breaching software and Apple devices have been in the news before, most famously in last year's celebrity iCloud data breach, where it was discovered that hackers were using ElcomSoft Phone Password Breaker, software intended for government and law agencies, to steal usernames and passwords to access iCloud backups.

While much of the discussion around government agencies and citizen data has revolved around mass collection, Hacking Team's software is designed to attack individual devices rather than a vast network. It's likely that the exploits detailed in Hacking Team's documents will be addressed and patched up in future iOS and Mac software updates.

Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Popular Stories

Waze logo

5 New Waze Features Rolling Out Now: Here Are All the Details

Monday July 13, 2026 3:42 am PDT by
Google today announced that Waze is getting a handful of new features, including some Gemini-powered personalization enhancements for Conversational Reporting. Conversational Reporting already uses Gemini when users report traffic incidents like slowdowns, but now you can use it to suggest map updates like road closures or outdated addresses. Saying something like "The road is closed here"...
Apple 2026 Back to School Graphic

Apple's 2026 Back to School Offer Just Went Live in Select Countries

Wednesday July 15, 2026 11:48 am PDT by
Apple's annual Back to School promotion is now live in select countries in Asia, including China, India, Malaysia, the Philippines, Singapore, Taiwan, Thailand, and Vietnam. The offer provides college students and educational staff with a free item with the purchase of an eligible Mac or iPad model. The exact offer varies by country, with options including a pack of four AirTags, AirPods 4,...
apple back to school sans airpods 2

Apple's 2026 Back to School Offer is Coming Soon

Sunday July 12, 2026 7:29 am PDT by
Apple's stores will be rolling out Back to School marketing materials this week, according to Bloomberg's Mark Gurman. This suggests that the offer will begin in the U.S. in the next few days. Last year, college students and educational staff could receive a free accessory like AirPods 4 or an Apple Pencil Pro with the purchase of a qualifying Mac or iPad model. The Back to School offer is in...

Top Rated Comments

AngerDanger Avatar
144 months ago
Additionally, Hacking Team developed the ability to create a malicious Newsstand app that could capture keystrokes and install monitoring software.
Get back into your folder and just be glad I can't delete you… without a jailbreak.

Attachment Image
Score: 28 Votes (Like | Disagree)
144 months ago
It's a good thing Apple keeps making iOS more capable. I have less and less reason to jailbreak as they keep updating it.
Score: 25 Votes (Like | Disagree)
jdogg836 Avatar
144 months ago
One of the arrogant members of that team was running his mouth on twitter this morning, stoking the fire even more. He was threatening the hackers who breached the data. Cool thing about all of the tools they have being released is within a few days, all the major anti-virus companies can update their software to find and remove this crap.
Score: 10 Votes (Like | Disagree)
jmh600cbr Avatar
144 months ago
That all sounds awful until you realize that you need an infected computer to make it happen
Score: 10 Votes (Like | Disagree)
144 months ago
So it requires a jailbroken device, attached to an infected trusted pc? Haha

Won't keep me from jailbreaking
No, the article could be a little clearer, but all you need is a jailbroken device to be vulnerable to the hack. The piece about the infected PC is one method by which an unjailbroken device can be hacked, presumably by surreptitiously jailbreaking it.

So if you have an unjailbroken phone it needs the extra step of being attached to an infected host, if jailbroken already, much easier, already vulnerable.

Since it cost 50k a hack, jailbroken or not, it's hard to get too worried about it. I don't think anyone would pay 50c to hack my phone. I am enjoying watching these asshats get their comeuppance however.
Score: 6 Votes (Like | Disagree)
JeffyTheQuik Avatar
144 months ago
Which is *exactly* why I stopped jailbreaking when I put my credit cards on the phone.
Score: 6 Votes (Like | Disagree)