UPDATED 22:43 EDT / AUGUST 26 2019

SECURITY

Apple rushes out new iOS security release to address jailbreaking vulnerability

Apple Inc. today released a new security update to its iOS mobile operating system a week after it was reported that it had managed to open a vulnerability that allowed Apple devices to be jailbroken.

iOS 12.4.1, available for iPhone 5s and later, iPad Air and later and sixth-generation iPod Touch devices, addresses what Apple describes as the ability for a malicious application “to execute arbitrary code with system privileges.” In layman’s terms, Apple is describing the ability to jailbreak the phone and run apps not approved by Apple.

Jailbreaking is the process of hacking an iOS device to allow users to remove software restrictions put in place by Apple. A jailbroken phone enables the installation of third-party software not available in the App Store and gives users the ability to customize the devices.

Though it sounds good in theory since it delivers the same features to the ever-decreasing number of iPhone users that are already available in Android, the exploit used to jailbreak iOS is also a serious security vulnerability that could be exploited by malicious actors.

As Pwn20ed, which is credited by Apple for finding the vulnerability, told Motherboard last week, the vulnerability could be exploited to make a malicious app or web page that includes the ability to steal data.

Even though the vulnerability is a security risk, Pwn20ed, which is the same site that offers the code to jailbreak Apple devices, is advising people not to upgrade to the latest iOS.

Blake Collins, research analyst at website security firm SiteLock LLC, previously told SiliconANGLE that although jailbreaking and rooting are great options for consumers who want to have more control over the software on their devices, the vulnerability opens Apple devices to spyware or worse.

“The implications for this are far-reaching,” Collins said. “This toolkit makes phones an easier target for malware and spyware. When you jailbreak your phone in this manner, you are making personal and private data on your phone more accessible in unforeseen ways.”

Photo: Pxhere

A message from John Furrier, co-founder of SiliconANGLE:

Support our open free content by sharing and engaging with our content and community.

Join theCUBE Alumni Trust Network

Where Technology Leaders Connect, Share Intelligence & Create Opportunities

11.4k+  
CUBE Alumni Network
C-level and Technical
Domain Experts
15M+ 
theCUBE
Viewers
Connect with 11,413+ industry leaders from our network of tech and business leaders forming a unique trusted network effect.

SiliconANGLE Media is a recognized leader in digital media innovation serving innovative audiences and brands, bringing together cutting-edge technology, influential content, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — such as those established in Silicon Valley and the New York Stock Exchange (NYSE) — SiliconANGLE Media operates at the intersection of media, technology, and AI. .

Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a powerful ecosystem of industry-leading digital media brands, with a reach of 15+ million elite tech professionals. The company’s new, proprietary theCUBE AI Video cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.