Apple iBoot leak shouldn't scare you (too much)
Everyone, take a deep breath. It's going to be OK.
Yes, a piece of Apple's iOS source code was posted to GitHub this week, but it turns out that when it comes to the security of your iPhone the iBoot leak might just be much ado about nothing.
SEE ALSO:Apple is none too pleased with seeing leaked iPhone source code on GitHubThis, of course, is Apple's official line — but it turns out that the three-quarters of a trillion-dollar company may be doing more than covering its own ass. It might just be, surprise, telling the truth.
Maybe.
"Old source code from three years ago appears to have been leaked, but by design the security of our products doesn’t depend on the secrecy of our source code," the company insisted in a statement to Mashable.
And that's more or less the thinking of security researcher Patrick Wardle, who you may remember from his work exposing the super creepy Fruitfly malware. When asked about the possible impact of this leak on iOS security, he explained why we can all probably rest easy.
"Having access to source code shouldn't make a system less secure (e.g. Linux is open source and very secure)," he noted over Twitter direct message. "[Real] hackers don't need access to source code — they can reverse a binary and find bugs."
Now, this doesn't mean that there won't be anysecurity effects of the leak, just likely not ones that will shake your personal iPhone to its core.
YOU GOOD?Credit: Scott Olson/Getty Images"[This] does make it way easier for pretty much anybody to look for bugs now," observed Wardle, "and since iOS bugs are so valuable — it may be unlikely that if somebody finds a bug they will report it to [Apple], vs sell it for wayyy more $$$."
Of course, some skepticism of Apple's everything is fineclaim is definitely warranted. As security researcher and founder of The Phobos Group Dan Tentler pointed out over email, "ask yourself this: would [Apple] release a press statement saying the sky is falling and that this [iBoot] leak will allow people to break into [iPhones] easier?"
Point taken. And we can assume there will be some ramifications, but explosive ones? Hard to say.
"Apple saying it's old, yah that's true," noted Wardle, "but a lot of that code is likely still used in iOS 11. So if you find a bug in the leaked [source] code, it may still be applicable today."
In the end, while the leak of the iBoot source code obviously isn't a good look for Apple, according to Wardle it doesn't presage a security apocalypse for the average iPhone owner. He assured us that the "sky isn't falling" and that access to source code does not automatically equal exploits.
So, like we said, you can take a deep breath. And, once you've done that (and updated your phone to the latest operating system), go back to worrying about Spectre and Meltdown.
Featured Video For You
The most difficult kind of computer systems to hack
相关文章
- 改造提升后的景观节点本报讯8月23日,记者再次来到芦山县飞仙关4A级景区旅游基础设施建设项目施工现场,与两个月前相比,这里的变化十分明显。芦山县飞仙关4A级景区旅游基础设施建设项目共有两个标段,建设内2024-09-22
花呗提前还款后还款日还会扣款吗(花呗提前还款后还款日还要还吗)
花呗提前还款后还款日还会扣款吗花呗提前还款后还款日还要还吗)2022-05-25 05:00:46支天泰导读大家好,小谷解答以上问题。花呗提前还款后还款日还会扣款吗,花呗提前还款后还款日还要还吗这个很2024-09-22- 贷款需要砍头利息还吗?2022-05-24 18:12:06苗苇纪导读大家好,小谷解答以上问题。贷款需要砍头利息还吗?这个很多人还不知道,现在让我们一起来看看吧!解答:1、没错,只要是借的贷款就需要还2024-09-22
- SC8780SC708(FC8708))2022-05-26 06:34:02宇文彩莉。SC8780,SC708(FC8708)这个很多人还不知道,现在让我们一起来看看吧!解答:1、TC58NVG5D2024-09-22
PS5 Pro: There are new whispers that the release date is fast approaching
Rumors of a "PS5 Pro" have been rocking the internet all year — and a new batch out of the big2024-09-22- 分期乐综合评分不足需要多久解除分期乐评分不足多久能恢复)2022-05-25 22:36:04米霭梁导读大家好,小谷解答以上问题。分期乐综合评分不足需要多久解除,分期乐评分不足多久能恢复这个很多人还不2024-09-22
最新评论