Published: Sat, February 10, 2018
Sci-tech | By Spencer Schmidt

Apple says DON'T fear about leaked source code - experts say DO

Apple says DON'T fear about leaked source code - experts say DO

It could provide hackers with a treasure trove of information they could use to design new attacks against Apple's operating system iOS. For so long, these codes have been well kept under wraps, as Apple has been very hesitant on sharing them openly with the public. iBoot, in particular, is a highly critical component.

An anonymous leak of iOS source code to GitHub won't impact the security of iPhone users, Apple said.

The code leaked onto GitHub claims to be designed for iOS 9 but much of it is likely to be found in iOS 11, making the leak potentially unsafe to Apple's mobile software.

Computer code for Apple's iOS mobile operating system has been leaked onto the internet, giving hackers a Rosetta Stone with which to infiltrate and control Apple devices across the world.

He continued: "iBoot is the one component Apple has been holding on to, still encrypting its 64-bit image. now it's wide open in source code form".

But leaks of this kind potentially open up the scope for iPhone hacking and no doubt a degree of furore will be churning away in communities that love nothing more than getting stuck into a piece of private code.

That Apple has been quick to seek removal of the code from GitHub is also proof enough how important the code is for the company. Before the iBoot leak, ZioShiba had been inactive on GitHub for at least seven months.

Though the code is for the iOS 9, some of the parts can be found in the iOS 11, notes The Verge.

Apple countered suggestions that it was a huge security issue, arguing that few people - if indeed any at all - would be affected by iBoot's leaking. Also, the reason this code is so vital as it is responsible for starting up an iOS device, or in other words, loads iOS in the first place each time the device is turned on. Once the phone is jailbroken, users are at will to run the software that are otherwise not allowed, or delete the apps that come preloaded on the device.

Unfortunately for the company, copies of the code have already become available to many, and it remains to be seen if those prove to be disruptive to iOS devices. Another security researcher says the code is real.

"Apple does not use security through obscurity, so this does not contain anything risky, just an easier to read format for the boot loader code", Strafach told TechCrunch.

Like this: