In the market for an iPhone? Here's a breakdown of all the currently shipping iPhones from Apple.
iPhone Source Code Was Leaked by Low-Level Apple Employee
Earlier this week, source code for iBoot, a core component of the iPhone's operating system, leaked on GitHub. The code was old, for a version of iOS 9, and it was quickly pulled from GitHub after Apple issued a DMCA takedown notice, but it left many wondering how such sensitive code ended up publicly available.
To answer that question, Motherboard got in touch with unnamed sources who were involved in the leak and investigated screenshots, text messages, and more, to determine just how it happened.
As it turns out, the code originally came from a low-level Apple employee who took the code from Apple in 2016 to share with friends in the jailbreaking community. This employee wasn't unhappy with Apple and didn't steal the code with malicious intent, but instead was encouraged by friends to obtain the code to benefit the jailbreaking community.
According to the unnamed people who spoke to Motherboard, what leaked wasn't the "full leak." "It's not the original leak-it's a copy," said one source.
Following the leak, Apple confirmed the authenticity of the code in a statement to MacRumors and pointed out that it's for a three-year-old operating system that's been replaced by iOS 11 and is in use only on a small number of devices.
To answer that question, Motherboard got in touch with unnamed sources who were involved in the leak and investigated screenshots, text messages, and more, to determine just how it happened.
As it turns out, the code originally came from a low-level Apple employee who took the code from Apple in 2016 to share with friends in the jailbreaking community. This employee wasn't unhappy with Apple and didn't steal the code with malicious intent, but instead was encouraged by friends to obtain the code to benefit the jailbreaking community.
The person took the iBoot source code--and additional code that has yet to be widely leaked--and shared it with a small group of five people.The original group of five people who were provided with access to the code didn't intend to share it, but it somehow got out. From one of the original people involved:
"He pulled everything, all sorts of Apple internal tools and whatnot," a friend of the intern told me. Motherboard saw screenshots of additional source code and file names that were not included in the GitHub leak and were dated from around the time of this first leak.
"I personally never wanted that code to see the light of day. Not out of greed but because of fear of the legal firestorm that would ensue," they said. "The Apple internal community is really full of curious kids and teens.I knew one day that if those kids got it they'd be dumb enough to push it to GitHub."The code began circulating more widely in 2017 and picked up in popularity late in the year before ending up on GitHub this week. Many in the jailbreaking and iPhone research communities attempted to stop sharing, but the major public leak couldn't be avoided.
According to the unnamed people who spoke to Motherboard, what leaked wasn't the "full leak." "It's not the original leak-it's a copy," said one source.
Following the leak, Apple confirmed the authenticity of the code in a statement to MacRumors and pointed out that it's for a three-year-old operating system that's been replaced by iOS 11 and is in use only on a small number of devices.
"Old source code from three years ago appears to have been leaked, but by design the security of our products doesn't depend on the secrecy of our source code. There are many layers of hardware and software protections built into our products, and we always encourage customers to update to the newest software releases to benefit from the latest protections."The iBoot code leak should not be of concern to the average user because Apple has many layers of protection in place, like the Secure Enclave, and does not rely on source code secrecy alone to keep its users safe. The leak could, however, make it easier for people to locate vulnerabilities to create new jailbreaks.
[ 110 comments ]
Top Rated Comments
(View all)
26 months ago
BREAKING NEWS: Android source code leaked, possibly by Google themselves!!
https://source.android.com
This isn't a big deal. If anything it means finding some remaining open holes which can then be patched. All Linux is open source. There aren't issues there because of it. If anything it means others can help to find vulnerabilities which can then be corrected.
iOS 9 was released 3 years ago. A LOT has changed in the source code since then and this isn't even the entire source as it can't be compiled.
https://source.android.com
This isn't a big deal. If anything it means finding some remaining open holes which can then be patched. All Linux is open source. There aren't issues there because of it. If anything it means others can help to find vulnerabilities which can then be corrected.
iOS 9 was released 3 years ago. A LOT has changed in the source code since then and this isn't even the entire source as it can't be compiled.
26 months ago
What a scumbag. There's really no other word to describe someone who would do this. You're given an opportunity to work for one of the best companies in the industry or the world for that matter and you betray them in the worst way possible. This isn't a careless employee leaving an iPhone 4 prototype at a bar. Malicious intent or not, this is a criminal act and I hope this guy is prosecuted to the fullest extent of the law.
It's one thing when jailbreakers find exploits on their own through countless hours of hard work and another thing when an employee violates the trust given to him by his employer. Thankfully the impact of this is limited and the security of most users won't be compromised but Apple will have to be a lot more careful with the people they hire from now on and what they're able to leave the premises with.
It's one thing when jailbreakers find exploits on their own through countless hours of hard work and another thing when an employee violates the trust given to him by his employer. Thankfully the impact of this is limited and the security of most users won't be compromised but Apple will have to be a lot more careful with the people they hire from now on and what they're able to leave the premises with.
26 months ago
Yikes. I wonder if he's going to be fired.
Pink Slip Time
The funny thing is that his friends push him to do it and then they expose him.
Funny how “friends” can throw friends under the bus huh?
Also peer pressure may have been a red flag as to how good of “friends” they really were
“Dude come do this thing that’s possibly illegal or could get us sued”
Not well thought out on the part of the friends
26 months ago
BREAKING NEWS: Android source code leaked, possibly by Google themselves!!
This was the bootloader, pretty sure that isn't Open Source on Android otherwise rooting wouldn't be such a big deal.
26 months ago
"I knew one day that if those kids got it they'd be dumb enough to push it to GitHub"
- True words.
- True words.
26 months ago
Following the leak, Apple confirmed the authenticity of the code in a statement to MacRumors and pointed out that it's for a three-year-old operating system that's been replaced by iOS 11 and is in use only on a small number of devices.
Really? Any iPad 2, 3, 4, iPad Mini 1, iPod Touch 5th Gen, etc. can't run anything above iOS 9. I imagine there are more of those devices still out there than you might think.I know that where I work, people and departments still continue to hang on to quite a lot of these types of devices, despite efforts from IT to get them to trade up or give them up.
26 months ago
These criminals need to be dealt with swiftly and aggressively. Jail is necessary because you don't want others thinking they can get away with it.
[ Read All Comments ]
For this week's giveaway, we've teamed up with Choetech to offer MacRumors readers a chance to win a 61W USB-C power adapter and accompanying USB-C cable for charging a Mac or an iPad Pro.
...
Best Buy has kicked off a new 3-day sale as we head into the weekend, with discounts on MacBook Air, MacBook Pro, Beats products, and iPhone cases. This sale lasts through Sunday, January 26 at 11:59...
The App Store is experiencing a temporary outage that started at 7:30 a.m. Pacific Time, according to Apple's System Status website. Apple's site says that there's an unspecified ongoing...
Throwboy, known for its Iconic Pillow Collection featuring a selection of plush pillows designed to look like Apple devices, today launched a new selection of mini pillows called the "Pocket...
The Powerbeats Pro have returned to their lowest-ever price of $199.95 on Amazon, down from $249.95. This sale is the same one we've been tracking for the Powerbeats Pro since last fall,...
Samsung is said to be working on its own answer to AirDrop, Apple's ad-hoc service that lets users transfer files among Macs and iOS devices over Wi-Fi and Bluetooth.
According to XDA...
Apple has leased the entirety of the so-called "Triangle Building" near Apple Park in San Jose, California, reports The Mercury News.
The prominent six-floor building is located at...
Since the launch of iOS 13 last fall, third-party access to users' background location data has reportedly declined by 68 percent, according to Location Sciences, a firm that analyzes location...
