But sometimes, new updates will have security flaws of their own. One of the most recent updates to Apple’s iOS accidentally rolled back a critical safeguard that prevents a device from having its operating system modified. Now, hackers and customizers are having a field day with it. If you’re on the latest version of iOS, here’s what you need to know to safeguard your device from harm.
A “broken” update?
According to reporting from Vice, a number of prominent security researchers have found that the latest software update from Apple breaks a patch released in May that safeguarded iOS against a process known as Jailbreaking.
This occurs when an exploit is used to gain access to the “root” of the device’s operating system, which allows a user (or hacker) to tweak and change iOS, install unauthorized software and make modifications to the functions of the phone.
In response to this rollback of protections, security researcher and iPhone tweaker pwn20wned released a “jailbreak” package for users interested in customizing their devices. Installing this package, however, does put your phone at risk of malware or worse — since the normal safeguards that only allow Apple-approved software to install are removed by the jailbreak.
The reappearance of this exploit is highly unusual, as Apple is normally very determined to stamp out jailbreaking and unauthorized modifications to its devices in any form. The rollback of this critical security patch, it seems, may have been an oversight on the part of developers.
As of now, there’s no telling when a new update will be made available to backtrack the issue, so security experts are urging iOS users to take extreme caution when downloading apps from the App Store.
Why is this “jailbreak” exploit dangerous for me?
If a hacker or cybercriminal decided to bundle an app with malware that takes advantage of the exploit, there’d be no way for users to know.
This is the same method that forms of Android malware have used to infiltrate phones, and usually, Apple’s moderation keeps these sketchy apps in check. When the security issue is coming from the top down, however, protecting users becomes a far more dicey prospect.
This isn’t the first time that iOS has been “jailbroken” by hackers, either. In fact, the process was extremely common during the early days of iOS, when features were more limited and devices less secure.
Several well-loved features like deleting pre-installed apps, screen recording and icon folders were all custom jailbreak tweaks before Apple made them official, so the process isn’t inherently bad or dangerous.
What jailbreaking does do, however, is allow your device to accept and install software that it wouldn’t be able to normally.
As mentioned above, if a hacker was intent on compromising your phone, all they’d need to do is tweak an App Store app to exploit the vulnerability, remotely jailbreak your device and install malware without your permission. Whether or not that’s worth some custom icons or themes is up to the user to decide.
To keep yourself safe while Apple works on an official fix for the issue, just make sure to exercise extreme caution when downloading any apps. Unlike before, the fact that you’re getting a program from the iOS App Store won’t help you (a scenario that Google Play users are all-too-familiar with).
In light of this oversight, though, you shouldn’t avoid keeping your phone up to date in the future. While glitchy updates may be released on occasion, the benefits of having the latest security updates are almost always worth the potential drawbacks.
And, of course, we at Komando.com will continue to give you trusted advice on how to mitigate or avoid any updates that put you at risk of poor security or performance. We’ll be updating this story as soon as more information is released by Apple on potential fixes.
How your iPhone can be hacked in 6 minutes
Apple users beware! There is a huge risk after new hacking programs were uncovered that can break your passcode and gain access to your phone in just 6.5 minutes! The programs have been traced back to a secret, private company in Atlanta. They are using programs to decode encrypted data. Once unlocked, it downloads all of your content.