+ Reply
Page 2 of 2 FirstFirst 12
Results 21 to 35 of 35

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: New Baseband Hack at Pwn2Own, But No Unlock (yet)

is a discussion within the

iPhone News

forums, a part of the

General iPhone

section;
Originally Posted by Paul Daniel Ash A new method of unlocking the iPhone baseband will be revealed at this year's Pwn2Own conference, with a new, and potentially malicious, feature: the
...
  1. #21
    Green Apple
    Join Date
    Nov 2008
    Location
    Miami. Fl.
    Posts
    79
    Thanks
    0
    Thanked 3 Times in 3 Posts

    Quote Originally Posted by Paul Daniel Ash View Post


    A new method of unlocking the iPhone baseband will be revealed at this year's Pwn2Own conference, with a new, and potentially malicious, feature: the ability to turn your phone into a spying device. Ralf Philipp Weinmann, a research associate at the University of Luxembourg, will be discussing a huge bug in the firmware of baseband processors commonly used on iPhones and Android devices at the CanSecWest conference in Vancouver, Canada, which begins March 9. However, there's no update on the arrival of a deployable iPhone unlock, whether or not connected to this exploit.

    Weinmann says he has identified some serious security holes in Qualcomm and Infineon firmware for GSM baseband processors. As a demonstration of how his exploit completely defeats the data protection engineered by the manufacturers into this firmware, Weinmann says he will show "how to use the auto-answer feature present in most phones to turn the telephone into a remote listening device."

    Baseband hackers and security analysts alike are impressed with the sophistication of the exploit. "[It's] like tipping over a rock that no one ever thought would be tipped over, said a forensic and anti-forensic researcher who is known only as 'the Grugq' to protect his own identity. "There are a lot of bugs hidden" in the baseband firmware, he added. "It is just a matter of actively looking for them." Don Bailey, a security consultant with Isec Partners, calls Weinmann's work "an extremely technical attack," but notes that it's unlikely to turn into a problem for everyday phone users because an attacker would need his own cellular base station. However, he notes that using OpenBTS and as little as $2,000 worth of equipment, anyone can create their own tower: something that used to cost tens of thousands of dollars. "Now it's a completely different game," Bailey says.

    Weinmann hacked a non-jailbroken iPhone in last year's Pwn2Own contest and exflitrated the SMS database in about 20 seconds. By loading a web page in Safari, Weinmann triggered an exploit that ran entirely inside the iPhone sandbox using the privileges of a non-root user called 'mobile'. With this exploit, Weinmann said, "I can do anything that 'mobile' can do." Weinmann is also credited with finding the TMSI overflow hole that was patched in iOS 4.2. The expectation is that the details on this exploit will also be kept secret until Apple patches the hole.

    Source: PC World
    That sucks, tell us how to hack it already!!! Screw apple you damn puppet!

  2. #22
    What's Jailbreak?
    Join Date
    Nov 2008
    Location
    Carlsbad
    Posts
    2
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Why am I the only one who is tired of hearing about "we could" hacks...
    I have been an avid consumer of the jailbreak process for years but I have to say I'm getting tired of the banter and endless possibilities with limited results - I want action or silence. Please.
    No disrespect to the people who are hard at work developing hacks but man am I tired to reading about fluff!

  3. #23
    Super Moderator Cer0's Avatar
    Join Date
    Apr 2008
    Location
    MN/WI
    Posts
    13,984
    Thanks
    388
    Thanked 1,138 Times in 888 Posts

    Quote Originally Posted by justsun View Post
    Why am I the only one who is tired of hearing about "we could" hacks...
    I have been an avid consumer of the jailbreak process for years but I have to say I'm getting tired of the banter and endless possibilities with limited results - I want action or silence. Please.
    No disrespect to the people who are hard at work developing hacks but man am I tired to reading about fluff!
    This really isn't from any dev team. This is just a showing of a flaw in security of the GSM chips. Like he did last year with SMS security flaw.

  4. #24
    Green Apple Dorkenstein909's Avatar
    Join Date
    Feb 2008
    Location
    Brooklyn
    Posts
    82
    Thanks
    8
    Thanked 0 Times in 0 Posts

    that would be cool in a spy movie...

  5. #25
    miPhone's better than yours GellBrake'rrrr's Avatar
    Join Date
    Feb 2009
    Location
    D-town Tejas
    Posts
    490
    Thanks
    317
    Thanked 79 Times in 53 Posts

    All in all, he is only helping Apple! Not the jailbreak/unlock community. So, don't get your hopes up that this will benefit us. The exploits will be shown /only/ to apple, and they will patch them as soon as he reveals them.

    It really would be nice if he were a member of modmyi though.... But, I'm sure he'd rather get paid a fortune for finding holes, rather than do it for free like our /greatful/ devs do...... Which most people take for granted.
    Last edited by GellBrake'rrrr; 01-18-2011 at 11:56 PM.

  6. The Following User Says Thank You to GellBrake'rrrr For This Useful Post:

    Darksecrets (01-20-2011)

  7. #26
    Super Moderator Cer0's Avatar
    Join Date
    Apr 2008
    Location
    MN/WI
    Posts
    13,984
    Thanks
    388
    Thanked 1,138 Times in 888 Posts

    Yea his last security mention was fixed really quick by Apple.

  8. The Following User Says Thank You to Cer0 For This Useful Post:

    Darksecrets (01-20-2011)

  9. #27
    Livin the iPhone Life JedixJarf's Avatar
    Join Date
    Jun 2007
    Posts
    1,917
    Thanks
    30
    Thanked 129 Times in 102 Posts

    sounds pretty dang awesome.

  10. #28
    Green Apple
    Join Date
    Oct 2007
    Location
    Switzerland
    Posts
    67
    Thanks
    9
    Thanked 4 Times in 3 Posts

    Quote Originally Posted by eyepoper View Post
    Yeahh Totaly agree.. Release the darn thing... one day they are going to patch it wether you like it or not.if its gonna be patched in 4.4 or 4.5 or 5.0 ITS GONNA BE PATCHED...

    so releasing the Unlock later or sooner for it not being patched is just a stupid excuse..
    We all know for now that 4.3 is going to have the same BB as for 4.2.1... there is not going to be any BB updates till iPhone 5 is released

    iPhone 5 or iPhone 4 (S) is at he Horizon already and we all see on many website that its going to have New CPU Hardware and stuf meaning BB Updates...

    So Dev Teams release the Unlock...
    the first beta has allready a new baseband
    iPhone 4 16GB 4.2.1 / iPhone 3GS 32GB 4.0.1 / iPhone 3G 8GB 3.1.3 / iPhone 2G 16GB 1.1.4

    MacBook Air 11'6" / Hackintosh i7 Snow Leopard

  11. #29
    What's Jailbreak?
    Join Date
    Feb 2010
    Posts
    7
    Thanks
    0
    Thanked 1 Time in 1 Post
    You know I remember hearing about how the iphone can be used as a listening device even if the phone is shut off like a year ago. Cant remember where I heard it but I remember the conspiracy guys were saying the government was in on it lol.

    But hey you never know.

  12. #30
    What's Jailbreak?
    Join Date
    Nov 2010
    Posts
    17
    Thanks
    1
    Thanked 0 Times in 0 Posts

    There's always going to be loopholes, it just needs the right people to exploit it.

  13. #31
    My iPhone is a Part of Me EskimoRuler's Avatar
    Join Date
    Dec 2007
    Location
    California
    Posts
    835
    Thanks
    14
    Thanked 48 Times in 44 Posts

    maybe we can turn the hole nation into a high frequency sonar microphone like in The Dark Knight
    You don't like the iPad because you don't have one!

  14. #32
    iPhone? More like MyPhone
    Join Date
    Apr 2010
    Posts
    113
    Thanks
    1
    Thanked 4 Times in 4 Posts

    I can understand Apple making jailbreak hard BUT I DONT UNDERSTAND WHY THEY ARE CAUSING PROBLEMS FOR UNLOCKERS.

  15. The Following User Says Thank You to delizaza23 For This Useful Post:

    bigbodybenz (01-19-2011)

  16. #33
    Green Apple spamsalad's Avatar
    Join Date
    Apr 2010
    Location
    Scotland
    Posts
    33
    Thanks
    5
    Thanked 3 Times in 3 Posts

    Quote Originally Posted by LSZ33 View Post
    wonder if any good will come out of this hack.
    no, only bad.....

  17. #34
    iPhone? More like MyPhone
    Join Date
    May 2008
    Posts
    107
    Thanks
    0
    Thanked 17 Times in 12 Posts

    with the CDMA phone and gsm/cdma i5 you can be assured the hacking community will grow, with new jailbreaks new dev teams flashing tools n such

    I would think it would make sense for apple to head twards selling all iPhones unlocked, if no exclusivity,and using the dual network chip, why not just sell all iPhones unlocked. Helps fight jailbreaking

    the i5 could
    Last edited by stfudvs; 01-20-2011 at 01:07 AM. Reason: Automerged Doublepost

  18. The Following User Says Thank You to stfudvs For This Useful Post:

    Darksecrets (01-20-2011)

  19. #35
    What's Jailbreak?
    Join Date
    Oct 2010
    Posts
    8
    Thanks
    0
    Thanked 2 Times in 2 Posts

    Exfiltrate
    –verb (used without object)
    1.to escape furtively from an area under enemy control.

    –verb (used with object)
    2.to smuggle (military personnel) out of an area under enemy control.

    Please use a dictionary and proofread these articles. These kinds of mistakes are rampant in the news on this site and look very unprofessional.

  20. The Following User Says Thank You to Aurora331 For This Useful Post:

    Darksecrets (01-20-2011)

+ Reply
Page 2 of 2 FirstFirst 12
Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts