Skip to Content

iPhone Source Code Was Leaked by Low-Level Apple Employee

by

Earlier this week, source code for iBoot, a core component of the iPhone's operating system, leaked on GitHub. The code was old, for a version of iOS 9, and it was quickly pulled from GitHub after Apple issued a DMCA takedown notice, but it left many wondering how such sensitive code ended up publicly available.

To answer that question, Motherboard got in touch with unnamed sources who were involved in the leak and investigated screenshots, text messages, and more, to determine just how it happened.

ios 9 ipad iphone
As it turns out, the code originally came from a low-level Apple employee who took the code from Apple in 2016 to share with friends in the jailbreaking community. This employee wasn't unhappy with Apple and didn't steal the code with malicious intent, but instead was encouraged by friends to obtain the code to benefit the jailbreaking community.

The person took the iBoot source code--and additional code that has yet to be widely leaked--and shared it with a small group of five people.

"He pulled everything, all sorts of Apple internal tools and whatnot," a friend of the intern told me. Motherboard saw screenshots of additional source code and file names that were not included in the GitHub leak and were dated from around the time of this first leak.

The original group of five people who were provided with access to the code didn't intend to share it, but it somehow got out. From one of the original people involved:

"I personally never wanted that code to see the light of day. Not out of greed but because of fear of the legal firestorm that would ensue," they said. "The Apple internal community is really full of curious kids and teens.I knew one day that if those kids got it they'd be dumb enough to push it to GitHub."

The code began circulating more widely in 2017 and picked up in popularity late in the year before ending up on GitHub this week. Many in the jailbreaking and iPhone research communities attempted to stop sharing, but the major public leak couldn't be avoided.

According to the unnamed people who spoke to Motherboard, what leaked wasn't the "full leak." "It's not the original leak-it's a copy," said one source.

Following the leak, Apple confirmed the authenticity of the code in a statement to MacRumors and pointed out that it's for a three-year-old operating system that's been replaced by iOS 11 and is in use only on a small number of devices.

"Old source code from three years ago appears to have been leaked, but by design the security of our products doesn't depend on the secrecy of our source code. There are many layers of hardware and software protections built into our products, and we always encourage customers to update to the newest software releases to benefit from the latest protections."

The iBoot code leak should not be of concern to the average user because Apple has many layers of protection in place, like the Secure Enclave, and does not rely on source code secrecy alone to keep its users safe. The leak could, however, make it easier for people to locate vulnerabilities to create new jailbreaks.

Popular Stories

tim cook data privacy day

Tim Cook Warned by CIA That China Could Move on Taiwan by 2027

Tuesday February 24, 2026 4:03 am PST by
Apple CEO Tim Cook was among a handful of top tech executives who attended a classified CIA briefing warning that China could attack Taiwan by 2027, according to a sweeping investigative report by The New York Times ($). The previously unreported briefing was apparently held in a secure room in Silicon Valley in July 2023. The meeting is said to have been arranged at the request of the...
Read Full Article159 comments
iphone fold text

iPhone Fold Crease Measurements Revealed as Device Hits Production

Wednesday February 25, 2026 5:37 am PST by
Apple has submitted production line orders for its upcoming foldable iPhone, effectively confirming that the device will launch this year, claims a Chinese leaker. According to the Weibo account "Fixed Focus Digital," assembly lines recently received the orders from Apple, which has apparently allowed the leaker to learn the crease measurements for the device's 7.8-inch inner display....
Read Full Article135 comments
Apple Announces Special Event in New York Feature 1

Apple Reportedly Plans to Unveil at Least Five New Products Next Week

Sunday February 22, 2026 9:48 am PST by
In his Power On newsletter today, Bloomberg's Mark Gurman said Apple will have a three-day stretch of product announcements from Monday, March 2 through Wednesday, March 4. In total, he expects Apple to introduce "at least five products." Subscribe to the MacRumors YouTube channel for more videos. A week ago, Apple invited selected journalists and content creators to an "Apple Experience" in...
Read Full Article137 comments

Top Rated Comments

rpmurray Avatar
rpmurray
105 months ago
Five people can keep a secret if five of them are dead.
Score: 27 Votes (Like | Disagree)
OldSchoolMacGuy Avatar
OldSchoolMacGuy
105 months ago
BREAKING NEWS: Android source code leaked, possibly by Google themselves!!

https://source.android.com

This isn't a big deal. If anything it means finding some remaining open holes which can then be patched. All Linux is open source. There aren't issues there because of it. If anything it means others can help to find vulnerabilities which can then be corrected.

iOS 9 was released 3 years ago. A LOT has changed in the source code since then and this isn't even the entire source as it can't be compiled.
Score: 22 Votes (Like | Disagree)
sputnikv Avatar
sputnikv
105 months ago
good way to ensure you don’t get hired by another tech giant
Score: 12 Votes (Like | Disagree)
L
lec0rsaire
105 months ago
What a scumbag. There's really no other word to describe someone who would do this. You're given an opportunity to work for one of the best companies in the industry or the world for that matter and you betray them in the worst way possible. This isn't a careless employee leaving an iPhone 4 prototype at a bar. Malicious intent or not, this is a criminal act and I hope this guy is prosecuted to the fullest extent of the law.

It's one thing when jailbreakers find exploits on their own through countless hours of hard work and another thing when an employee violates the trust given to him by his employer. Thankfully the impact of this is limited and the security of most users won't be compromised but Apple will have to be a lot more careful with the people they hire from now on and what they're able to leave the premises with.
Score: 10 Votes (Like | Disagree)
hsotnicam8002 Avatar
hsotnicam8002
105 months ago
Thief - jail.
Score: 7 Votes (Like | Disagree)
iOSFangirl6001 Avatar
iOSFangirl6001
105 months ago
Yikes. I wonder if he's going to be fired.
Pink Slip Time

The funny thing is that his friends push him to do it and then they expose him.
Funny how “friends” can throw friends under the bus huh?
Also peer pressure may have been a red flag as to how good of “friends” they really were

“Dude come do this thing that’s possibly illegal or could get us sued”

Not well thought out on the part of the friends
Score: 7 Votes (Like | Disagree)
Read All Comments