Slashdot Mirror

← Back to Stories (view on slashdot.org)

Evad3rs Announce iOS 7 Jailbreak For Latest Apple Devices

Posted by timothy on from the taketh-and-giveth-away dept.

hypnosec writes "Evad3rs, the famous iOS jailbreak team, has announced an iOS 7 jailbreak that will work in all iDevices including iPhone 5S, iPhone 5C and iPad Air running iOS 7.0 through to iOS 7.0.4. The iOS 7 jailbreak was announced without much of a hype, unlike the one for iOS 6. 'Merry Christmas! The iOS 7 jailbreak has been released at http://evasi0n.com/! All donations will go to @publicknowledge, @eff and @ffii,' tweeted evad3rs." Reader FrogBlastTheVentCore adds a note of caution: "They recommend restoring your device to iOS 7.0.4 if it has received OTA updates before attempting to jailbreak."

20 of 110 comments (clear)

  1. Re:iOS 7.1 by TrekkieGod · · Score: 2

    iOS 7.1 is probably coming next month... now surely whatever exploit was used will be analyzed by Apple and double-patched for the final 7.1 release.

    You'd think they could have waited just a little bit more!

    They may have downloaded the beta, realized the exploit had been patched, and released the jailbreak as a result, before a bunch of people update to 7.1 without thinking.

    Pure speculation on my part, but the point is that we should wait to see if they say something about it before complaining that they were impatient. There may have been good reasons.

    --

    Warning: Opinions known to be heavily biased.

  2. iPod Touch by HalAtWork · · Score: 2

    Now if only Apple would bring out new iPod Touch hardware...

    --
    Twinstiq, game news
  3. Re:iOS 7.1 by Servaas · · Score: 2

    Considering it doesn't work on the beta it seems likely that Apple has already patched whatever hole they used.

  4. Jailbreak with broken Cydia and Mobile Substrate by Wizy · · Score: 3, Informative

    This jailbreak is completely broken, and according to multiple other jailbreakers the evasion team took money to include a piracy app store from china. You can see all the fun on twitter as they yell at each other.

  5. Re: iOS 7.1 by RyuuzakiTetsuya · · Score: 4, Insightful

    Because the things you can do in user land are far more interesting to a lot of people that it is worth the trade offs in terms of stability, usability and security. Being able to customize the shit out of springboard, the keyboard, etc are really nice and fun but the charm of the OS isnt that I feel nice and fuzzy being in idiot mode, it's that I really don't feel the need to hack at it.

    Don't get me wrong, I would love to customize the shit out of ios and run non App Store apps but I generally don't feel I need it to make the thing a nice place to live.

    --
    Non impediti ratione cogitationus.
  6. Re:Nice, but... by Just+Some+Guy · · Score: 5, Insightful

    Regardless of where the code is or when it was written, I have a root-level vulnerability that makes my phone insecure. I wish jailbreaking were both unneeded (because you could easily install your own software through official means) and impossible (because there weren't any security holes to exploit).

    --
    Dewey, what part of this looks like authorities should be involved?
  7. Re:Nice, but... by Overzeetop · · Score: 2

    " The fact that you can jailbreak your iPhone means that another party is able to compromise mine."

    Well, yes. Though in a more global sense, practically every open OS on the planet, and most closed ones, are also "vulnerable" in this way. Linux doesn't require "jailbreaking" to load your own kernal patches - it's already "vulnerable" in the sense you're promoting.

    And given that this essentially requires a very specific set of circumstances to achieve, including physical access to the hardware, it isn't the kind of vulnerability that causes me to lose sleep.

    --
    Is it just my observation, or are there way too many stupid people in the world?
  8. DO NOT USE - Super sketchy stuff happening by Anonymous Coward · · Score: 5, Informative

    Read Stefan Esser's Twitter feed for some off the problems with this jailbreak relating to a mandatory Chinese app store that get installed for some users (featuring pirated apps). They also left other members of the community like Saurik out, which is just odd. I wouldn't trust my devices with personal information with the current jailbreak.

  9. Re:Nice, but... by Just+Some+Guy · · Score: 2

    It'd definitely harder now, and I see that as a very good thing. Remember the drive-by website that was basically a remote root exploit? There's a vast difference between requiring physical access and operator permission, and being able to root a system through the owner visiting a web page.

    --
    Dewey, what part of this looks like authorities should be involved?
  10. Re:iOS 7.1 by Cinder6 · · Score: 4, Insightful

    Honestly, as an iOS user, I don't really see the need. I have jailbroken in the past and just didn't see much that was worth the effort or the inevitable wait for official updates. For those that do want/need/"need" root, then this is a good option (or just buy an Android device).

    There are a few cool apps/tweaks on Cydia, but userland iOS also has tons of cool apps. For the vast majority of iOS users, jailbreaking isn't necessary.

    --
    If you can't convince them, convict them.
  11. Re:Nice, but... by ArbitraryName · · Score: 2

    The fact that you can jailbreak your iPhone means that another party is able to compromise mine.

    If they have physical control of the device, yes. Why would you trust any device you lost physical control of?

  12. Review Guidelines tell you what iDon't by tepples · · Score: 2

    A leaked copy of the App Store Review Guidelines listed several things that no iOS app is allowed to do. For example, there's no public API for seeing which wireless access points are available, making network troubleshooting apps impossible. Nor can a developer create an app launcher that's more accessible to individuals with disabilities. Nor is there any web browser that implements HTML5 features that Apple deliberately left out of Mobile Safari.

    1. Re:Review Guidelines tell you what iDon't by thunderclap · · Score: 2

      All very good reasons to steer clear of the apple ecosystem.

  13. Re:Jailbreak with broken Cydia and Mobile Substrat by ArbitraryName · · Score: 4, Insightful

    When you jailbreak you're running random code from the internet that was specifically advertised as a security exploit. I don't know what sort of naive expectations you have.

  14. Evasi0n has issued a statement. by ArbitraryName · · Score: 4, Informative

    Found here.

  15. Re:Nice, but... by 93+Escort+Wagon · · Score: 2

    So there's no confusion, "jailbreaking" is exactly identical to "finding and exploiting a security vulnerability". By definition, someone is using an unpatched problem to root your device and replace the system software with their own version. The fact that you can jailbreak your iPhone means that another party is able to compromise mine.

    Technically, you are correct (the very best kind of correct). However if you followed jailbreaking more closely you'd realize a couple things.

    1) There is no single exploit involved. With the iOS 6 jailbreak, they had to chain a whole sequence of things together to get root on the device.

    2) In the end, it requires physical control over the device. As I understand it, the iOS 6 jailbreak required an exploit that allowed you to side load an app onto your device. That app, running on your device, then did all the heavy lifting of putting the jailbreak into place - which required additional exploits to allow the app out of its sandbox.

    So what you say is true; but it's not something I'd lose any sleep over. I think the people who do need to be concerned are actual jail breakers - they need to be sure they're getting the jailbreak from "legitimate" (so to speak) sources.

    --
    #DeleteChrome
  16. Already used it (iPad 2) by aussersterne · · Score: 2

    Don't see any Chinese app stores. Just Cydia. All working well. Biggest problem: Nothing on Cydia is yet compatible with iOS 7.x, so in a way there's no point unless you just want system access—there's next to nothing that you can install and use. But hopefully that will change in time.

    --
    STOP . AMERICA . NOW
  17. Re: iOS 7.1 by RyuuzakiTetsuya · · Score: 2

    This is, quite frankly, a false tradeoff. You can get the same stability, usability and security in several ways (like not running as root by default, like requiring extra steps to become root as with Android, etc), WITHOUT taking freedom away from users who would want it.

    No, it's not.

    That kind of interaction isn't free. Not as in beer and not as in freedom. You've now got to devote resources to supporting these features, documenting these features and helping users when they fuck up. Granted, yes, you could just leave users out in the cold when everything goes all pear shaped... However, that's kind of psychotic.

    The freedom you want isn't free for the vendor. Not free as in beer and depending on device driver agreements, etc. may not be free as in speech. Granted that's a separate issue all together.

    The "Free as in freedom" crowd had 30 years to bring UI and UX to this stage but no one really cared enough to actually do it. Instead we got everyone disagreeing with each other about KDE or Gnome.

    --
    Non impediti ratione cogitationus.
  18. Re: iOS 7.1 by phantomfive · · Score: 2
    It takes more effort for the vendor to attempt to lock these devices down than it would to leave them open.

    The "Free as in freedom" crowd had 30 years to bring UI and UX to this stage but no one really cared enough to actually do it. Instead we got everyone disagreeing with each other about KDE or Gnome.

    I see, you just wanted to rant irrelevantly about open source, and thought this was a reasonable place to do it. Be gone, troll.

    --
    "First they came for the slanderers and i said nothing."
  19. Re: iOS 7.1 by RyuuzakiTetsuya · · Score: 2

    It takes more effort for the vendor to attempt to lock these devices down than it would to leave them open.

    Aside from supporting the functionality, making sure all the APIs work nicely, having customer support in case the whole thing goes wrong...

    I see, you just wanted to rant irrelevantly about open source, and thought this was a reasonable place to do it. Be gone, troll.

    No, I *love* open source. Open source isn't the same movement as Free Software movement. The FSF had decades to get this right, but never did. It wasn't even on their radar.

    --
    Non impediti ratione cogitationus.