'Hacking Team' Data Breach Confirms Firm's Ability to Infiltrate Jailbroken iPhones

Cybersecurity firm Hacking Team experienced a data breach earlier today, resulting in 400 GB of its documents being leaked onto the Internet, reports The Guardian. The documents confirm Hacking Team's ability to infiltrate and monitor jailbroken iPhones on behalf of government law enforcement agencies like the NSA, as noted by Macworld.

hackingteam

Much has been speculated before and after Edward Snowden’s release of a trove of National Security Agency (NSA) documents in 2013 about the capabilities of the United States’ agencies as well as those of allies and enemies. The Hacking Team dump reveals quite a bit more about the routine functions of third-party suppliers into that ecosystem, including specifically enumerated capabilities.

iOS users should therefore take note that the long-running concern that jailbroken iPhones and iPads were susceptible to vulnerabilities that could include access by so-called state actors appears to be confirmed by the data breach.

Hacking Team's software would need to be installed on a jailbroken iPhone, but the firm has the ability to jailbreak and infect a phone with its software via a malware-infected trusted computer the phone is connected to. In the firm's pricing list [PDF, requires Chrome], it's revealed hacking an iOS device costs €50,000 ($55,242) and includes "features" like Skype, WhatsApp and Viber chats, location, contacts and lists of calls. However, this service also includes a prerequisite of a jailbroken iPhone.

Hacking Team uses a legitimate Apple enterprise signing certificate, which is used by corporations to create software that can easily be installed on employee devices, combined with jailbroken iOS devices to bypass iOS app installation protections. Additionally, Hacking Team developed the ability to create a malicious Newsstand app that could capture keystrokes and install monitoring software.

Last year, researchers working independently of each other at Kaspersky Lab and Citizen Lab discovered components of Hacking Team's tools and how they were used by government agencies to steal data from mobile devices, but the full extent of the software hadn't been confirmed until now.

Data breaching software and Apple devices have been in the news before, most famously in last year's celebrity iCloud data breach, where it was discovered that hackers were using ElcomSoft Phone Password Breaker, software intended for government and law agencies, to steal usernames and passwords to access iCloud backups.

While much of the discussion around government agencies and citizen data has revolved around mass collection, Hacking Team's software is designed to attack individual devices rather than a vast network. It's likely that the exploits detailed in Hacking Team's documents will be addressed and patched up in future iOS and Mac software updates.

Note: Due to the political nature of the discussion regarding this topic, the discussion thread is located in our Politics, Religion, Social Issues forum. All forum members and site visitors are welcome to read and follow the thread, but posting is limited to forum members with at least 100 posts.

Top Rated Comments

AngerDanger Avatar
76 months ago
Additionally, Hacking Team developed the ability to create a malicious Newsstand app that could capture keystrokes and install monitoring software.
Get back into your folder and just be glad I can't delete you… without a jailbreak.

Attachment Image
Score: 28 Votes (Like | Disagree)
Shadow Runner Avatar
76 months ago
It's a good thing Apple keeps making iOS more capable. I have less and less reason to jailbreak as they keep updating it.
Score: 25 Votes (Like | Disagree)
jdogg836 Avatar
76 months ago
One of the arrogant members of that team was running his mouth on twitter this morning, stoking the fire even more. He was threatening the hackers who breached the data. Cool thing about all of the tools they have being released is within a few days, all the major anti-virus companies can update their software to find and remove this crap.
Score: 10 Votes (Like | Disagree)
jmh600cbr Avatar
76 months ago
That all sounds awful until you realize that you need an infected computer to make it happen
Score: 10 Votes (Like | Disagree)
AngerDanger Avatar
76 months ago
Aren't these guys got hacked themselves yesterday?
'Hacking team' went to 'Hacked team' and now they still claim some ability?!

Pathetic!
A team that got hacked themselves is able to hack iOS. That seems more ominous than if the team was super competent and secure themselves.
Score: 6 Votes (Like | Disagree)
JeffyTheQuik Avatar
76 months ago
Which is *exactly* why I stopped jailbreaking when I put my credit cards on the phone.
Score: 6 Votes (Like | Disagree)

Top Stories

tracking disabled ios 14 5

Analytics Suggest 96% of Users Leave App Tracking Disabled in iOS 14.5

Friday May 7, 2021 1:51 am PDT by
An early look at an ongoing analysis of Apple's App Tracking Transparency suggests that the vast majority of iPhone users are leaving app tracking disabled since the feature went live on April 26 with the release of iOS 14.5. According to the latest data from analytics firm Flurry, just 4% of iPhone users in the U.S. have actively chosen to opt into app tracking after updating their device...
tile amazon sidewalk integration

Tile to Leverage Amazon Echo and Ring Devices to Better Compete With AirTags

Friday May 7, 2021 2:07 pm PDT by
Amazon today announced that it is teaming up with Tile to add Amazon Sidewalk integration to Tile's Bluetooth trackers. Amazon Sidewalk, for those unfamiliar, is a network of Amazon Bluetooth devices that's designed to improve the connectivity of devices like the Ring and Amazon Echo. Tile will now be joining Amazon Sidewalk, and through this integration, Amazon Echo and Ring devices will be ...
Top Stories 59 Feature

Top Stories: Epic Games vs. Apple, Hidden AirTag Mode, Apple Music Hi-Fi, Colorful MacBook Air?

Saturday May 8, 2021 6:00 am PDT by
While we wait for the newly introduced iMac, iPad Pro, and Apple TV models to launch later this month, this week saw the kickoff of the big Epic Games v. Apple trial, with lots of juicy tidbits coming out as the two sides make their arguments. This week also saw some rumors about a Hi-Fi tier for Apple Music, more biometric sensing capabilities for Apple Watch, and timing for the...
airtag hacked

AirTag Successfully Hacked to Show Custom URL in Lost Mode

Monday May 10, 2021 1:52 am PDT by
The inevitable race to hack Apple's AirTag item tracker has reportedly been won by a German security researcher, who managed to break into the device's microcontroller and successfully modify its firmware. Yesss!!! After hours of trying (and bricking 2 AirTags) I managed to break into the microcontroller of the AirTag! 🥳🥳🥳/cc @colinoflynn @LennertWo pic.twitter.com/zGALc2S2Ph— stacksmashing ...
macbook colors 3d black bezels

Prosser: Next MacBook Air Could Come in Colors Similar to iMac

Friday May 7, 2021 6:55 am PDT by
According to Apple leaker Jon Prosser, Apple's upcoming release of the MacBook Air will feature various colors, similar to the colors in the newly released 24-inch iMac. In the latest video of his YouTube channel Front Page Tech, Prosser says the same source who accurately provided him information on the first Apple silicon iMac coming in colors has told him that he recently saw a prototype...
zoom app icon

Apple Gave Zoom Access to Special API to Use iPad Camera During Split View Multitasking

Sunday May 9, 2021 2:00 am PDT by
Zoom, a hallmark platform used by millions during the global health crisis, has been given access to a special iPadOS API that allows the app to use the iPad camera while the app is in use in Split View multitasking mode. This case of special treatment was first brought to attention by app developer Jeremy Provost, who, in a blog post, explains that Zoom uses a special API that allows the...
Apple 5G Modem Feature

Kuo: Apple-Designed 5G Modem May Debut in iPhones as Early as 2023

Sunday May 9, 2021 10:02 pm PDT by
Apple plans to adopt its own custom-designed 5G baseband chip starting with the 2023 iPhones, meaning it'll no longer need to rely on Qualcomm to supply the 5G cellular modem for the iPhone, Apple analyst Ming-Chi Kuo said today in an investors note obtained by MacRumors. According to Kuo, Apple plans to include its own custom-designed 5G baseband chip starting with the launch of the 2023...
3d printed airtag case siri remote

3D-Printed Case Lets You Attach an AirTag to Your Apple TV Remote

Monday May 10, 2021 8:11 am PDT by
Apple recently released a redesigned Siri Remote with a physical clickpad, but if you have an original Siri Remote laying around that you still plan on using, you may be interested in getting an AirTag case for the remote. Etsy user PrintSpiredDesigns has capitalized on the opportunity with a new 3D printed, made-to-order AirTag case for the original Siri Remote. The remote slides into the...
iPhone 13 Camera Backs

iPhone 13 Models Will Be Slightly Thicker and Will Have Larger Camera Bumps

Monday May 10, 2021 10:41 am PDT by
Apple's upcoming iPhone 13 models will be slightly thicker than the iPhone 12 models and will also feature larger, thicker camera bumps with lenses that protrude less, according to iPhone 13 schematics seen by MacRumors. The new iPhone 13 and 13 Pro models are expected to feature a thickness of 7.57mm, up from 7.4mm in the iPhone 12 models. That's an increase of 0.17mm, which won't be hugely ...
ifixit m1 macbook teardown

Leaked MacBook Schematics Have Aided Independent Technicians Performing Complicated Repairs

Monday May 10, 2021 8:51 am PDT by
Independent technicians have reportedly been able to use leaked MacBook schematics to aid repairs (via Vice). Last month, Apple supplier Quanta Computer was hit with an attack by the ransomware group known as "REvil," leading to a large quantity of internal Apple documents about both released and unreleased devices being exposed. The leaked PDFs, available on a number of forums and online...