New hack could allow 'jailbroken' Apple iPads at launch
iPhone hacker George Hotz has demonstrated a new method to permanently "jailbreak" the iPhone 3GS, and he said the hack will "probably" work on the iPad, which goes on sale next week.
Hotz, known by his online handle "Geohot," updated his blog this week to reveal a new video demonstrating a jailbroken iPhone 3GS being rebooted. Jailbreaking is a practice that allows users to run unsigned code on the iPhone OS, which powers the iPhone, iPod touch and forthcoming iPad. It voids the warranty and can open up the device to security issues, but can also be used to allow new features like multitasking.
"The jailbreak is all software based, and is as simple to use as blackra1in," Hotz said, referencing his previous iPhone 3GS crack that employed a method known as a tethered jailbreak. "It is completely untethered, works on all current tethered models (ipt2, 3gs, ipt3), and will probably work on iPad too."
Late last year, Apple quietly updated the BootROM in the iPhone 3GS to thwart potential hackers. It marked the first time ever that the handset maker had modified its hardware in the middle of a product line, without a new model released.
The new BootROM, known as iBoot-359.32, has proven challenging for hackers, who have only been able to implement the tethered jailbreak, which requires users to connect their iPhone to a computer via USB every time they reboot the device. Hotz claims his latest hack will not require a USB connection.
While iPhone users can rely on jailbreaking to unlock their handset for use with unauthorized carriers, the 3G-capable version of the iPad, scheduled to arrive in late April, ships unlocked by default. However, its 3G frequencies are only compatible with AT&T in the U.S.
But the warranty-voiding jailbreak process can also allow users to run software Apple does not allow. Hackers have created their own custom applications that allow features like multitasking not currently permitted within the iPhone OS.
Apple and the jailbreaking community, led by Hotz and a separate group of hackers known as the iPhone Dev Team, have gone back and forth for some time, as the Cupertino, Calif., company has looked to close avenues used by hackers. One of the main concerns about jailbreaking is piracy, as the procedure can allow users to steal software from the App Store.
Users who jailbreak without knowledge of what they are doing could potentially open up their phone to exploits, as was revealed last November when the first-known iPhone worm attacked jailbroken handsets. The worm only affected users who did not change their phone's default SSH password, which allows file transfers between phones.
Hotz, known by his online handle "Geohot," updated his blog this week to reveal a new video demonstrating a jailbroken iPhone 3GS being rebooted. Jailbreaking is a practice that allows users to run unsigned code on the iPhone OS, which powers the iPhone, iPod touch and forthcoming iPad. It voids the warranty and can open up the device to security issues, but can also be used to allow new features like multitasking.
"The jailbreak is all software based, and is as simple to use as blackra1in," Hotz said, referencing his previous iPhone 3GS crack that employed a method known as a tethered jailbreak. "It is completely untethered, works on all current tethered models (ipt2, 3gs, ipt3), and will probably work on iPad too."
Late last year, Apple quietly updated the BootROM in the iPhone 3GS to thwart potential hackers. It marked the first time ever that the handset maker had modified its hardware in the middle of a product line, without a new model released.
The new BootROM, known as iBoot-359.32, has proven challenging for hackers, who have only been able to implement the tethered jailbreak, which requires users to connect their iPhone to a computer via USB every time they reboot the device. Hotz claims his latest hack will not require a USB connection.
While iPhone users can rely on jailbreaking to unlock their handset for use with unauthorized carriers, the 3G-capable version of the iPad, scheduled to arrive in late April, ships unlocked by default. However, its 3G frequencies are only compatible with AT&T in the U.S.
But the warranty-voiding jailbreak process can also allow users to run software Apple does not allow. Hackers have created their own custom applications that allow features like multitasking not currently permitted within the iPhone OS.
Apple and the jailbreaking community, led by Hotz and a separate group of hackers known as the iPhone Dev Team, have gone back and forth for some time, as the Cupertino, Calif., company has looked to close avenues used by hackers. One of the main concerns about jailbreaking is piracy, as the procedure can allow users to steal software from the App Store.
Users who jailbreak without knowledge of what they are doing could potentially open up their phone to exploits, as was revealed last November when the first-known iPhone worm attacked jailbroken handsets. The worm only affected users who did not change their phone's default SSH password, which allows file transfers between phones.
Comments
Says the video is a hacked 3GS? Anyone else notice the headphones at the bottom? Thin body? That's an iPod Touch right?
I was thinking it was a touch 3rd Gen too.
Wouldn't want to try this as it will void the warranty.
One can always restore it.
One can always restore it.
Not true. The warranty is voided by the action of jailbreaking even if you subsequently restore the phone or pad. The question is whether anyone can tell what you did.
If you restore the phone and Apple is unable to tell it was ever jailbroken, then you are still safe, but there's nothing to stop Apple from simply putting something in the firmware, or giving their store employees tools that can detect if the phone was ever *previously* jailbroken. So you can restore the phone, but it's still a gamble and if anyone finds out you did it, the warranty is still void.
Also, relying on some shifty, anonymous, quasi-criminal on the Internet to restore your phone is almost as dumb as relying on that same person to jailbreak it for you IMO.
One can always restore it.
Not that I would want to try to jailbreak an iPad or other iDevise, I read that first if you should want to really know what you are doing and how to do it. Some who have tried have and didn't do it right were open to a worm attack specifically designed to attack that weakness. When these jailbreakers took their iPhones to an Apple store, they were informed that they had voided their warranty--so you broke it, you fix it.
Thanks, you posted just before I got mine done.
I was thinking it was a touch 3rd Gen too.
which is what makes the video even more exciting for the hacking community. the 3rd gen itouch has never been jailbroken untethered before. ever...
Apple really only cares that you paid for the device, sure they don't want every phone, IPT or Ipad broken into. As long as it's not endemic I doubt it's worth too much effort to make it impregnable. All they have to do is make it "hard enough" that most people will find it just enough work to not be worth it.
If this issue ever made it to the courts Apple might open padora's box.
People in general detest being told what or what not they can do with something they put a lot of their hardworking hours to achieve.
Anyone can get a computer and a AT&T 3G connect card and do whatever they want, disrupt the entire network if they can. Run any software they want. They are held liable for their actions.
It makes no difference with the iPhone, it's a computer and a cell phone, people should be able to do what they want, run what software they want. They are held liable for their actions just the same.
It's on AT&T's end to monitor their network and stop any disruptions, because there are bound to people that will do so regardless. Trying to prevent issues on the phone side is stupid and reeks of the bottom up approach to problem solving.
The only reason the iPhone is locked down is to promote the App Store and profits for Apple. Step outside their closed ecosystem and you void your warranty, how stupid is that?
Apple is about to repeat the same mistakes again with the iPad.
A possible solution is to allow a legitimate means to jailbreak one's device, with appropriate risk warnings of course, therefore allowing software to be installed from third party sources outside the App Store.
Apple can continue to update the iPhone OS and firmware, place safeguards in to protect the hardware just like they do with OS X and EFI.
Leave the Disney World like "App Store" to the kiddies where Apple seems to like to keep it.
If I want to play Sports Illustrated Swimsuit Removable Game with my large touchscreen iPad I should be allowed to do so, I'm a adult.
Sorry,
Not true. The warranty is voided by the action of jailbreaking even if you subsequently restore the phone or pad. The question is whether anyone can tell what you did.
If you restore the phone and Apple is unable to tell it was ever jailbroken, then you are still safe, but there's nothing to stop Apple from simply putting something in the firmware, or giving their store employees tools that can detect if the phone was ever *previously* jailbroken. So you can restore the phone, but it's still a gamble and if anyone finds out you did it, the warranty is still void.
Also, relying on some shifty, anonymous, quasi-criminal on the Internet to restore your phone is almost as dumb as relying on that same person to jailbreak it for you IMO.
"quasi-criminal"? - that's a pretty serious bit of name calling there... Of course you have evidence for that right?
"quasi-crimial"? - that's a pretty serious bit of name calling there... Of course you have evidence for that right?
Are you serious? Do you even know what "quasi-criminal" means?
Seriously this article is about 98% parental advisory note and 2% content, I'd hope for better from AI. Why don't you go ahead and suggest jailbreaking can cause cancer too.
Are you serious? Do you even know what "quasi-criminal" means?
How does jailbreaking an iPhone resemble any criminal activity at all?
Edit: I guess you are referring to the guy who created the hack. You do need proof to back that up.
Are you serious? Do you even know what "quasi-criminal" means?
To me it means: A reference to a court's right to punish for actions or omissions as if they were criminal.
The most common example is finding a parent who is delinquent in child support in contempt of court and penalizing him or her with a jail sentence. When a hearing is quasi-criminal, the quasi-defendant is entitled to all due process protections afforded a criminal defendant.
What does it mean to you?