Apple Seeks New Sheriff to Lock Up IPhones

Just as a new hack, blacksn0w, promises to unlock iPhones with the latest Apple software from AT&T's wireless network, Apple is looking for a sheriff to lock the smartphones back up again, permanently.

By John Cox
Thu, November 05, 2009

Network World — Just as a new hack, blacksn0w, promises to unlock iPhones with the latest Apple software from AT&T's wireless network, Apple is looking for a sheriff to lock the smartphones back up again, permanently.

Motorola Droid vs. Apple iPhone 3GS: finally, a contender? 

A job posting on Apple corporate Web site seeks a security manager for the iPhone platform to lead a team focused on secure booting and installation of the operating system, cryptographic services, partitioning and hardening its internal security domains, and risk analysis of security threats.

The "liberation movement" for iPhone poses special issues for enterprises that are adopting the iPhone in unprecedented numbers, despite the fact that Apple provides virtually no security or management infrastructure for the popular device. With jailbroken phones, enterprise users could load applications that might, even unintentionally, threaten corporate data or back-end Exchange servers, for example. Unlocking the phone from AT&T's authorized network makes it hard to track, monitor and optimize wireless costs and could open the enterprise to legal problems.

It's not clear from the online job post whether this is a brand new position or Apple is seeking a replacement for an existing, or former, employee.

Hardening the iPhone OS can address a whole range of potential issues, but almost surely involves preventing both jailbreaking – freeing the iPhone from dependence on the App Store (now at 100,000 apps) and thereby allowing users to load their own software programs – and unlocking – cutting the cord to exclusive carrier AT&T and letting the iPhone run on other GSM networks.

The liberation movement comes to a peak this week with the release of Blacksn0w, a free program from ace iPhone hacker George Hotz, known as Geohot. It offers a baseband unlock of the latest iPhone OS Version, 3.1.2 and the current standard 05.11.07 cellular modem firmware.

One iPhone owner is even touting the new hacking utility as a value-added feature to attract bids for his used 16GB iPhone 3GS model on eBay

According to another hacking site, iPhone Dev Team, Hotz exploits a known crash (manipulating the AT+XEMN command) to create a heap overflow, through which Hotz was able to inject code that results in a software unlock of the iPhone's SIM on the latest versions of the OS and baseband firmware loads.

The Dev Team post notes that users with the older 04.26 baseband firmware have been able to unlock using other programs, such as ultrasn0w and purplesn0w. "Whether or not you choose to update your baseband solely to use the new unlock is a personal choice, but so far there are no advantages to doing so (and remember you can't come back to 04.26 after you've gone to 05.11)," the post cautions.

Continue Reading

White Papers »
Think Your AntiVirus Software is Working? Think Again
It's time to shift from the status quo to a new, more effective endpoint security approach, called intelligent whitelisting, which affords greater protection, productivity, and efficiency.
Reducing Local Admin Exposure Through Application Whitelisting
In today's Windows environment, end users are accustomed to having local administrator privileges which allow them to download a variety of applications and potentially misconfigure their PCs.
Unruly USB Devices Expose Networks to Malware
It's pretty easy for organizations to get so wrapped up about what goes out on USB drives that they forget to protect against what comes in their environments via USB.
The CISOs Guide to Measuring IT Security
Learn the key steps to enhancing your security visibility so that you have a voice at the executive table and not just a seat.
Why Free Patch Management Tools Could Cost You More
Today's current economic situation underscores the importance of scrutinizing all business expenses, particularly within IT. Although point patching products may look more attractive on the surface, closer inspection often reveals hidden costs and missing capabilities. The result: fragmented patch management and weaker security posture while also being a more costly and cumbersome option for organizations to maintain.
Scalability & Capacity Planning: Build vs. Buy
This paper explores issues that arise when planning for growth of Information Technology infrastructure. The paper explains how colocation of data centers can provide scalability, enabling users to modify capacity quickly to meet fluctuating demand.
Webcasts »
How Klout Combines Big Data with Microsoft Business Intelligence to Measure Influence
Big Data-it has the potential of transforming a business. In the case of Klout, a social networking analytics site, big data is the heart of the business. Klout processes and analyzes billions of user data signals every day-from Facebook, Twitter, LinkedIn, blogs and more. How do they do it? Gain valuable insights from David Mariani, vice president of engineering for Klout.
Oracle Database Appliance - Simplifying your High Availability Database
Date: February 29, 2012
Time: 1:00 PM EST

Seasoned IT managers know from experience that in many cases the bulk of the cost of an IT solution is incurred after the sale. Issues can range from sizing and skill development, to committing significant resources installing, deploying, managing, and supporting a complex assortment of hardware, software, and networking.

With the Oracle Database Appliance, you can eliminate the time, risk, and costs often associated with building, implementing, and maintaining a high-availability solution for your users and customers. Plus it's based on Intel Xeon processors to ensure a high level of performance and scalability.

Attend this Webcast to discover how the Oracle Database Appliance can help you increase your ROI by:
* Reducing deployment time from weeks to hours
* Simplifying ongoing maintenance and support
* Benefitting from the highest levels of availability
Successful Mobility: Access and Performance Anywhere
Today's workforce is truly mobile. At the office, from customer sites, even at home or in a hotel - their connectivity and application performance needs remain the same. But even though their requirements don't change, the challenges in meeting their expectations do.
Fraser Milner Casgrain: A Success Story in Search-Powered Content Delivery
Too much information can be just as limiting as too little information if users can't get what they want when they want it. Find out how the IT leaders at one of Canada's leading law firms, Fraser Milner Casgrain LLP, implemented Recommind's next-generation content delivery and search platform within their SharePoint portal to enable timely and effortless access to the information users need.
Oracle Database Appliance—Engineered for Simplicity
Continuous Availability Is Now Within Reach

You need to expand your database services to be available 24/7, while lowering your data center costs. A challenge? Not with Oracle. Now, there's a simple, reliable, affordable way to take advantage of the world's #1 database and the continuous availability it has to offer —the Oracle Database Appliance.

You can eliminate the time, risk, and costs normally associated with building a high-availability database solution for your users and customers. Attend this Webcast to discover how the Oracle Database Appliance can help you:

* Consolidate many small databases onto a single, reliable system
* Deploy and manage a clustered database system in hours, not weeks
* Benefit from single-vendor support

Learn about this affordable, highly available database system that can scale seamlessly as applications and data grow.
Business Content Collaboration: How Burr & Forman Increased Enterprise Performance with YouSendIt
No business knows more than a law firm about handling large quantities of documents. Burr & Forman, a large law practice based in the southeast US, faced a crisis - sending multiple document files simultaneously was causing its mail servers to choke. The firm needed technology that could not only handle large document volumes, but would be secure and easy to use.
Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter
  11. View all Newsletters | Privacy Policy
White Papers » All White Papers

Think Your AntiVirus Software is Working? Think Again

Reducing Local Admin Exposure Through Application Whitelisting

Unruly USB Devices Expose Networks to Malware

The CISOs Guide to Measuring IT Security

Why Free Patch Management Tools Could Cost You More

Scalability & Capacity Planning: Build vs. Buy

The Data Center Build-or-Buy Decision: 6 Key Factors You Should Consider

Colocation: The Logical Home for the Cloud

The Changing Role of Mobile Communications in the Workplace

Oracle Database Appliance

Time Savings and Ease of Deployment Comparison Study: Oracle Database Appliance vs. Microsoft SQL Server

ESG: Oracle Database Appliance: A Simple, Economical Option for SMBs and Independent Software Vendors

Accelerating Data Migration with WAN Optimization

Centralized private cloud model provides for simpler, more secure infrastructure

Case Study - Constangy

Assessing ROI for Mobile Acceleration Clients

Five Steps to Successful IT Consolidation

ESG - Avoiding the Hazards of IT Consolidation

The Changing Requirements of WAN Optimization

Platform Feature Brief
Resource Center
buy a link »
Ads by TechWords