stayontheblack.com

Technology

Secret Apple Code Posted On Github

Jailbreak Might Be Easier Through iPhone Source Code Leak, Apple Claims Software Is Secured

This means that updated devices are not completely at risk to vulnerabilities hackers might find in the source code. Rusty Carter, VP of Product at Arxan Technologies commented below.

When the code finally made its way to GitHub, the situation spiralled out of control considerably, though Motherboard's source says that Apple was already aware of the leak before it hit the code hosting platform - which isn't surprising given how vigilantly Apple protects its intellectual property.

He continued: "iBoot is the one component Apple has been holding on to, still encrypting its 64-bit image. now it's wide open in source code form".

Protecting such large repositories of source code is hard when many employees have access, Spanier said.

"Apple iOS is widely viewed as the most trusted mobile operating system out there".

Apple directed Github to remove the code since all codes are kept private to ensure consumer's privacy.

Motherboard quoted Jonathan Levin, an author of numerous books on iOS and macOS system programming, saying it was the biggest leak in Apple's history, and he's not far wrong. All the same, it hit GitHub with a DMCA request to have the hosted files taken down. That employee was apparently encouraged by friends from the Jailbreaking community to pull source code and internal tools from Apple's servers.

According to Apple, 93% of its users are using iOS 10 or above.

Security researchers and hackers are likely to study the code, to see whether there are any flaws in it that might make unauthorised access possible, he added.

By design, "the security of our products doesn't depend on the secrecy of our source code", Apple wrote in the statement.

Those contacts told the tech publication that the intern didn't have it out for Apple because of personal gripes, but rather that they convinced him to in order to contribute to security research they had been conducting.

Apple keeps code like this firmly under lock and key, in a form of 'security through obscurity', as it is essential to the core functionality of iOS.

The anonymous sources say that they were part of a group of five individuals who were given the leaked iBoot code.

Cyber security expert Amit Sethi from Synopsys said the leak was unlikely to have a major impact on users. These devices may no longer use the leaked code.