• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • Apple Releases iOS 9.3.5

    Today, August 25, 2016, Apple has released the fifth maintenance update to its iOS 9 mobile operating system, version 9.3.5.

    iOS 9.3.5 is here approximately three weeks after the launch of the fourth update (iOS 9.3.4), and it promises to fix yet another important security issue that could be used to jailbreak iPhone, iPad, and iPod touch devices running iOS 9.2 to iOS 9.3.4.

    According to Apple, the iOS 9.3.5 update addresses to kernel bugs, one that could allow an app to disclose kernel memory, and another one that might let certain apps execute arbitrary code with kernel privileges, and a WebKit issue that allowed for arbitrary code execution when accessing a maliciously crafted website.
    This article was originally published in forum thread: Apple Releases iOS 9.3.5 started by blkcadi View original post
    Comments 14 Comments
    1. Rakim's Avatar
      Rakim -
      Quote Originally Posted by blkcadi View Post

      Today, August 25, 2016, Apple has released the fifth maintenance update to its iOS 9 mobile operating system, version 9.3.5.

      iOS 9.3.5 is here approximately three weeks after the launch of the fourth update (iOS 9.3.4), and it promises to fix yet another important security issue that could be used to jailbreak iPhone, iPad, and iPod touch devices running iOS 9.2 to iOS 9.3.4.

      According to Apple, the iOS 9.3.5 update addresses to kernel bugs, one that could allow an app to disclose kernel memory, and another one that might let certain apps execute arbitrary code with kernel privileges, and a WebKit issue that allowed for arbitrary code execution when accessing a maliciously crafted website.
      SEEEEEE this is what I'm talking about..... These dudes at APPLE are getting very shrewd with this preemptive ish. Tryna patch holes BEFORE they are even exposed....[emoji58][emoji58]
    1. Zokunei's Avatar
      Zokunei -
      Quote Originally Posted by Rakim View Post
      SEEEEEE this is what I'm talking about..... These dudes at APPLE are getting very shrewd with this preemptive ish. Tryna patch holes BEFORE they are even exposed....[emoji58][emoji58]
      Actually the exploits were already found to be in use in the form of spyware (including secret camera/mic recording) installed on certain journalists' phones. Scary stuff.
    1. Bo Troxell's Avatar
      Bo Troxell -
      Quote Originally Posted by Zokunei View Post
      Actually the exploits were already found to be in use in the form of spyware (including secret camera/mic recording) installed on certain journalists' phones. Scary stuff.
      I agree. When I read about it, sure made me shiver.
    1. xboxbml's Avatar
      xboxbml -
      Quote Originally Posted by Zokunei View Post
      Actually the exploits were already found to be in use in the form of spyware (including secret camera/mic recording) installed on certain journalists' phones. Scary stuff.
      Yeah...tracking people in Israel..


      Sent from my iPhone using Tapatalk
    1. Zokunei's Avatar
      Zokunei -
      I read on ArsTechnica that Apple confirmed this to already be patched in the last iOS 10 beta by the way.
    1. StuG III's Avatar
      StuG III -
      The iOS 9.3.5 upgrade plugs three holes that, according to researchers, are being used right now by the Pegasus surveillance kit – a powerful commercial malware package sold to governments for snooping on dissidents and journalists.

      Pegasus exploits the bugs to inject itself into iThings. A victim simply has to click on a bad web link to start an infection. Once installed, Pegasus can read messages and emails, listen to calls, monitor social network posts, pull out Wi-Fi passwords, and so on. It essentially has comprehensive access to an poisoned handheld.

      The three vulnerabilities exploited by the spy kit are:

      CVE-2016-4655: An input validation flaw that could potentially allow iOS kernel memory contents to be viewed by an installed app.
      CVE-2016-4656: A remote code execution from memory corruption flaw in iOS kernel that can be exploited by an installed app.
      CVE-2016-4657: A remote code execution flaw in WebKit that would allow an attacker to "jailbreak" and install malware on an iOS device by way of a specially crafted webpage.
      source
    1. Rakim's Avatar
      Rakim -
      Quote Originally Posted by Zokunei View Post
      Actually the exploits were already found to be in use in the form of spyware (including secret camera/mic recording) installed on certain journalists' phones. Scary stuff.
      I didn't know that... WHAT THE Fu(?!?
      The spyware game has gotten serious....
      I don't need anyone recording/eavesdropping on my adventures unbeknownst to me.... #jussayin
    1. Rakim's Avatar
      Rakim -
      Quote Originally Posted by Zokunei View Post
      I read on ArsTechnica that Apple confirmed this to already be patched in the last iOS 10 beta by the way.
      Well that's a RELIEF!!!
    1. bigboyz's Avatar
      bigboyz -
      Sounds like technology NSA already uses. Privacy is a thing of the past.
    1. Feanor64's Avatar
      Feanor64 -
      Just throw away your phone
    1. mgmm1's Avatar
      mgmm1 -
      This has been on our local news throughout the morning. I thought I heard the malware is installed when opening a link in either a text message or email from someone unknown. Not sure if I heard that correctly.
    1. djampb's Avatar
      djampb -
      I think this some underhanded way to try to get people out of their jailbreak. scare tactics!
    1. Bo Troxell's Avatar
      Bo Troxell -
      Quote Originally Posted by Zokunei View Post
      Actually the exploits were already found to be in use in the form of spyware (including secret camera/mic recording) installed on certain journalists' phones. Scary stuff.
      This is what I've read about the Spyware.

      Apple Fixes Security Flaw After UAE Dissident'''s iPhone Targeted - NBC News
    1. trangnguyen92's Avatar
      trangnguyen92 -
      Quote Originally Posted by Zokunei View Post
      Actually the exploits were already found to be in use in the form of spyware (including secret camera/mic recording) installed on certain journalists' phones. Scary stuff.
      So, the iPhone can not be used for the US presidency