Hackers Bypass iOS Anti-Theft Feature, ‘Unbrick’ Devices

Apple's anti-theft feature for iOS, Activation Lock, has been compromised by a group of hackers. Two individuals going by the names AquaXetine and MerrukTechnolog claim that they have broken through Activation Lock's security features, which means that stolen devices can be activated with little effort. Just one line of code is all that is needed for people to unlock bricked iDevices, and the hackers have released that code.

Not only can stolen phones and tablets be unlocked, personal information can reportedly be taken from the devices as well. AquaXetine said Apple was contacted before the hackers let the code go public but because the Cupertino, California-based company did not respond until recently, the hackers decided to move forward in this way, which has surely gotten the attention of Apple as well as criminals.

Man in the Middle

Once criminals have an iOS device in hand, they can plug it into a Windows computer and perform the attack. Exact details regarding the vulnerability and exploitation have yet to be released, but the attack has been described as a man-in-the-middle exploitation. This means that the hacker's computer tricks Activation Lock into thinking that it is communicating with a secure Apple server.

With AquaXetine and MerrukTechnolog's code, someone with a stolen iOS product can tell that device to unlock, and since they are impersonating Apple, the device will do whatever it is told to do. Instructions have been posted on the team's site and the hackers, operating as "doulCi," say the code is supposed to be used for good and not to unlock stolen devices. Their service is marketed as the first alternative iCloud server, and Activation Lock bypassing is made possible by adding a server address to an operating system's host file.

Even though the doulCi service is supposedly meant for individuals who ...

Comments are closed.

Hackers Bypass iOS Anti-Theft Feature, ‘Unbrick’ Devices

Apple's anti-theft feature for iOS, Activation Lock, has been compromised by a group of hackers. Two individuals going by the names AquaXetine and MerrukTechnolog claim that they have broken through Activation Lock's security features, which means that stolen devices can be activated with little effort. Just one line of code is all that is needed for people to unlock bricked iDevices, and the hackers have released that code.

Not only can stolen phones and tablets be unlocked, personal information can reportedly be taken from the devices as well. AquaXetine said Apple was contacted before the hackers let the code go public but because the Cupertino, California-based company did not respond until recently, the hackers decided to move forward in this way, which has surely gotten the attention of Apple as well as criminals.

Man in the Middle

Once criminals have an iOS device in hand, they can plug it into a Windows computer and perform the attack. Exact details regarding the vulnerability and exploitation have yet to be released, but the attack has been described as a man-in-the-middle exploitation. This means that the hacker's computer tricks Activation Lock into thinking that it is communicating with a secure Apple server.

With AquaXetine and MerrukTechnolog's code, someone with a stolen iOS product can tell that device to unlock, and since they are impersonating Apple, the device will do whatever it is told to do. Instructions have been posted on the team's site and the hackers, operating as "doulCi," say the code is supposed to be used for good and not to unlock stolen devices. Their service is marketed as the first alternative iCloud server, and Activation Lock bypassing is made possible by adding a server address to an operating system's host file.

Even though the doulCi service is supposedly meant for individuals who ...

Comments are closed.