+ Reply
Page 1 of 5 123 ... LastLast
Results 1 to 20 of 82

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: German Researchers Highlight Security Threats of Jailbreaking

is a discussion within the

iPhone News

forums, a part of the

General iPhone

section;
German researchers have come froward with a public warning: If someone steals your iPhone and jailbreaks it, they may be able to retrieve your sensitive passwords. As a result, the
...
  1. #1
    MMi Staff Writer Michael Essany's Avatar
    Join Date
    Aug 2009
    Location
    Valparaiso, Indiana
    Posts
    3,618
    Thanks
    17
    Thanked 1,474 Times in 561 Posts

    Default German Researchers Highlight Security Threats of Jailbreaking


    German researchers have come froward with a public warning: If someone steals your iPhone and jailbreaks it, they may be able to retrieve your sensitive passwords. As a result, the "Fraunhofer Institute Secure Information Technology" team has released a new video showcasing the perceived "security threats" posed by jailbreaking, a situation in which an "attacker can retrieve passwords in 6 minutes."

    The video demonstrates a password-locked iPhone tethered to a computer via USB. Following a snappy jailbreak, the hoodlum taps into the device's filesystem and nefariously copies a keychain access script. When executed, the script enables all the passwords stored on the iPhone to be viewed after extraction. This "flawed security design" - which affects all iPhone and iPad devices containing the latest firmware - makes all of the above possible without the need to even unlock a password-protected handset.

    While the video and demonstrated process largely fail to tell our community something it doesn't already know, the discussion itself speaks to a bigger issue. The surplus of recent talk surrounding the security weaknesses of the iPhone and other jailbreaking-related dangers is leading up to the unveiling of the iPhone 5 this summer. The 5th generation iPhone is believed to be deeply vested in ramped-up security features. As a result, some in the jailbreaking community believe that Apple is about to make "doing our thing" exponentially more difficult to do.

    Fraunhofer Institute
    Apple Insider

  2. The Following User Says Thank You to Michael Essany For This Useful Post:

    turkey26 (02-10-2011)

  3. #2
    Green Apple
    Join Date
    Jan 2011
    Posts
    30
    Thanks
    2
    Thanked 1 Time in 1 Post
    Well, even if you don't jailbreak, you're exposed to that risk if you lose your iphone, since anyone can jailbreak your iphone and do that, even if YOU didn't jailbreak it. The bad thing is if someone can do that by hacking into your iphone wirelessly. That's something really risky.

  4. The Following User Says Thank You to Lionkid7 For This Useful Post:

    Funked (02-10-2011)

  5. #3
    iPhone? More like MyPhone
    Join Date
    Nov 2007
    Posts
    102
    Thanks
    7
    Thanked 16 Times in 11 Posts

    Dun, Dun, Duuuuuuuuuun

  6. #4
    What's Jailbreak?
    Join Date
    Aug 2010
    Posts
    9
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Release antidote and all our problems solved

  7. #5
    iPhoneaholic spazturtle's Avatar
    Join Date
    Mar 2009
    Posts
    321
    Thanks
    115
    Thanked 27 Times in 16 Posts

    The funny thing is that you can fix this security flaw by jailbreaking your device and installing some modifications.

  8. #6
    What's Jailbreak?
    Join Date
    Aug 2010
    Posts
    9
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Quote Originally Posted by spazturtle View Post
    The funny thing is that you can fix this security flaw by jailbreaking your device and installing some modifications.
    What are these mods ur referring to?

  9. #7
    What's Jailbreak? PamelaGirl's Avatar
    Join Date
    Mar 2008
    Posts
    8
    Thanks
    2
    Thanked 0 Times in 0 Posts

    Quote Originally Posted by spazturtle View Post
    The funny thing is that you can fix this security flaw by jailbreaking your device and installing some modifications.

    Like what?

  10. #8
    Green Apple
    Join Date
    Oct 2009
    Posts
    50
    Thanks
    1
    Thanked 0 Times in 0 Posts

    i do't know the pdf automatic download hole that's been filled by jailbreaking, no ? or maybe it's the way the jailbreak shows apple what holes to close, oh no and what about the sms virus that's been around

  11. #9
    Green Apple
    Join Date
    Jul 2010
    Posts
    41
    Thanks
    10
    Thanked 1 Time in 1 Post
    Quote Originally Posted by spazturtle View Post
    The funny thing is that you can fix this security flaw by jailbreaking your device and installing some modifications.
    Do tell.

  12. #10
    iPhone? More like MyPhone vedavis's Avatar
    Join Date
    May 2008
    Location
    Mount Laurel, NJ
    Posts
    140
    Thanks
    11
    Thanked 17 Times in 11 Posts

    The way that the article is written the risk is the same, whether the iOS device is jailbroken or not. Just be prepared to remote wipe.

  13. #11
    Master Theme Creator toyvan's Avatar
    Join Date
    Sep 2007
    Location
    U.S.A.
    Posts
    2,732
    Thanks
    2,261
    Thanked 1,852 Times in 811 Posts

    This is why I pay $99 a year for mobileme..remote lock/wipe - stupid video

  14. The Following 2 Users Say Thank You to toyvan For This Useful Post:

    psp257 (02-10-2011), SnowLeo (02-10-2011)

  15. #12
    Green Apple
    Join Date
    May 2010
    Posts
    33
    Thanks
    2
    Thanked 1 Time in 1 Post
    Quote Originally Posted by toyvan View Post
    This is why I pay $99 a year for mobileme..remote lock/wipe - stupid video
    People who like the ones in the video know how to JB a phone and get passwords from it for sure know about mobileme and how to bypass it. Like taking out the SIM card or turning off Wi-Fi.

  16. #13
    iPhone? More like MyPhone fbiryujin's Avatar
    Join Date
    Jan 2011
    Location
    Long Island NY
    Posts
    162
    Thanks
    5
    Thanked 7 Times in 6 Posts

    "Once you have physical access to a device, security is ALWAYS compromised."
    -Any security analyst

    The above quote applies to every electronic device, whether it is an iPhone, Android phone, tablet device, police radio (yes those hold secret data), computer, etc...
    This article is nothing newsworthy. I keep as little personal data as possible on my phone, and I am always prepared to remote wipe.
    -FBIRyuJin

  17. The Following 2 Users Say Thank You to fbiryujin For This Useful Post:

    lightmaster (02-10-2011), plcrules (02-10-2011)

  18. #14
    What's Jailbreak? ingesterfella's Avatar
    Join Date
    Jun 2010
    Location
    uk
    Posts
    18
    Thanks
    1
    Thanked 2 Times in 2 Posts

    Peeps with latest 4th gen devices can get a Find my iPhone service for free you can lock wipe and find your iPhone for free just saying

  19. The Following User Says Thank You to ingesterfella For This Useful Post:

    rickinsav (02-10-2011)

  20. #15
    iPhone? More like MyPhone johnr9412's Avatar
    Join Date
    Jul 2009
    Location
    Huntsville, AL
    Posts
    198
    Thanks
    47
    Thanked 13 Times in 13 Posts

    I don't know if this is just me, but I hold on to my technology with an iron grip! Nobody touches it unless I want them to. So I guess I have no worries
    my SPOON is too big

  21. #16
    What's Jailbreak?
    Join Date
    Aug 2008
    Posts
    1
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Like it's been said we all know of these risks and I'm not sure about these mods that were mentioned the PDF is the only one I have heard about unless there private in which case SHARE MAN SHARE lol

  22. #17
    Green Apple
    Join Date
    Dec 2009
    Posts
    86
    Thanks
    15
    Thanked 32 Times in 18 Posts

    Quote Originally Posted by toyvan View Post
    This is why I pay $99 a year for mobileme..remote lock/wipe - stupid video
    JESUS...cancel you're account now. That service is FREE for FW 4.2.1 (which can now be jailbroken).

  23. #18
    Green Apple tabaks's Avatar
    Join Date
    Sep 2007
    Posts
    46
    Thanks
    1
    Thanked 1 Time in 1 Post
    Quote Originally Posted by Labertasche View Post
    People who like the ones in the video know how to JB a phone and get passwords from it for sure know about mobileme and how to bypass it. Like taking out the SIM card or turning off Wi-Fi.
    Broken logic. I don't think that even half percent of hoodlums that would steal an iPhone would know how to turn it on, much less jailbreak. So, yes, location service is enough, unless you wait a week to try it out and find the phone.

  24. #19
    iPhoneaholic AUZambo's Avatar
    Join Date
    Jul 2010
    Posts
    469
    Thanks
    47
    Thanked 38 Times in 28 Posts

    I'm gonna go out on a limb and say I don't really need to worry about this.

    First, of all the people I know with an iPhone I don't know anyone who has had an iPhone stolen (I've heard of it, but don't know any victims personally).

    Second, IF (and that's a big "if") my iPhone gets stolen, the chances of the thief actually knowing how to jailbreak and gain access to the passwords is incredibly slim.

    I have a better chance of being murdered for my fake rolex than someone stealing my iPhone and getting my passwords.

  25. The Following 2 Users Say Thank You to AUZambo For This Useful Post:

    carlbgc (02-10-2011), lightmaster (02-10-2011)

  26. #20
    What's Jailbreak? mw_w's Avatar
    Join Date
    Oct 2009
    Posts
    26
    Thanks
    2
    Thanked 0 Times in 0 Posts

    Quote Originally Posted by Lionkid7 View Post
    Well, even if you don't jailbreak, you're exposed to that risk if you lose your iphone, since anyone can jailbreak your iphone and do that, even if YOU didn't jailbreak it. The bad thing is if someone can do that by hacking into your iphone wirelessly. That's something really risky.
    Very true.

+ Reply
Page 1 of 5 123 ... LastLast
Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts