Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Click for more information, or
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
Mobile Tech
Tame your scariest paperwork. Find Out How
Average Rating:
Rate this article:  
Hackers Bypass iOS Anti-Theft Feature,
Hackers Bypass iOS Anti-Theft Feature, 'Unbrick' Devices

By Seth Fitzgerald
May 22, 2014 11:17AM

    Bookmark and Share
Once criminals have an iOS device in hand, they can plug it into a Windows computer and perform the attack. Exact details regarding the exploitation have yet to be released, but the attack has been described as a man-in-the-middle exploitation. Activation Lock is tricked into thinking it is communicating with a secure Apple server.
 



Apple's anti-theft feature for iOS, Activation Lock, has been compromised by a group of hackers. Two individuals going by the names AquaXetine and MerrukTechnolog claim that they have broken through Activation Lock's security features, which means that stolen devices can be activated with little effort. Just one line of code is all that is needed for people to unlock bricked iDevices, and the hackers have released that code.

Not only can stolen phones and tablets be unlocked, personal information can reportedly be taken from the devices as well. AquaXetine said Apple was contacted before the hackers let the code go public but because the Cupertino, California-based company did not respond until recently, the hackers decided to move forward in this way, which has surely gotten the attention of Apple as well as criminals.

Man in the Middle

Once criminals have an iOS device in hand, they can plug it into a Windows computer and perform the attack. Exact details regarding the vulnerability and exploitation have yet to be released, but the attack has been described as a man-in-the-middle exploitation. This means that the hacker's computer tricks Activation Lock into thinking that it is communicating with a secure Apple server.

With AquaXetine and MerrukTechnolog's code, someone with a stolen iOS product can tell that device to unlock, and since they are impersonating Apple, the device will do whatever it is told to do. Instructions have been posted on the team's site and the hackers, operating as "doulCi," say the code is supposed to be used for good and not to unlock stolen devices. Their service is marketed as the first alternative iCloud server, and Activation Lock bypassing is made possible by adding a server address to an operating system's host file.

Even though the doulCi service is supposedly meant for individuals who are locked out of their own devices, Twitter is currently filled with photos of people unlocking multiple devices at once. Given that information and common sense, it is obvious that doulCi is meant as a tool for the multimillion-dollar stolen-electronics market.

A Known Issue

The hackers have not specified which versions of iOS this will work on, nor have they explained how such an elaborate system like Activation Lock can be bypassed with one simple piece of code. However, some information has begun to come out from security researchers like Mark Loman, who said the hack was made possible because of a known issue in iTunes for Windows.

While speaking with iPhone In Canada, Loman said a known SSL issue would allow this sort of hack to take place. Apple released a fix, but the fix was only applied to some pieces of Apple software.

"The problem is with verifying the certificate," Loman said. "Apple appears to have deliberately left out this essential step required for proper secure communication. They fixed it last month for iOS but forgot to fix it for iTunes. But the jailbreak community is already making use of it -- which is how I figured it out."
 

Tell Us What You Think
Comment:

Name:

tonypak:

Posted: 2014-06-22 @ 12:46pm PT
This is the site where i got my icloud bypass nnot sure about other sites. http://www.bypassicloud7activation.com/

roki:

Posted: 2014-06-22 @ 11:06am PT
brother i bypass activation on my iPhone with the tool from this site http://bypassicloudactivationlock7.wordpress.com/ , for me it works,

Anastasia:

Posted: 2014-06-20 @ 4:07pm PT
If you are looking for a bypass iCloud Activation Lock and have not been able to do it, now you are able to do this, we now offer the new software that will remove bypass activation lock on IOS 7 for iPhone 4, 4s, 5, 5c and 5s. Visit our website and solve your problem http://bypassios7icloudactivation.blogspot.com/

DieGO Rens:

Posted: 2014-06-10 @ 4:21am PT
I just bypass the icloud screen lock on my iPhone 5c using the software
form this page http://removeicloud.wordpress..... Its for free , all
you need to do is to make some survey for download the software. Good
luck . Try this tool and solve your iPhone problem

maikl:

Posted: 2014-05-29 @ 6:19am PT
I bypass the activation of my iPhone 5 with software from this website http://bypassicloudactivationlockios.blogspot.com/2014/05/bypass-icloud-activation-lock-on-your.html . I finally found software that really works

Samson Simpson:

Posted: 2014-05-26 @ 7:46am PT
It definitely works. All you do is change your host's file to the IP assigned and add the server name after. Restart your pc, and plug in your device that is opened to the activation screen. It only takes 30 seconds.....



Salesforce.com is the market and technology leader in Software-as-a-Service. Its award-winning CRM solution helps 82,400 customers worldwide manage and share business information over the Internet. Experience CRM success. Click here for a FREE 30-day trial.


 Mobile Tech
1.   Review: Amazon's New Fire Phone
2.   Apple Smart Watch Patent Surfaces
3.   iPhone 6: Bad for Apple Tablet Sales?
4.   GoTenna: Work-Thru for Dead Zones
5.   Nokia X Phones Had Identity Crisis


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Wall Street Journal Hacked Again
Hacked again. That’s the story at the Wall Street Journal this week as the newspaper reports that the computer systems housing some of its news graphics were breached. Customers not affected -- yet.
 
Dropbox for Business Beefs Up Security
Dropbox is upping its game for business users. The cloud-based storage and sharing company has rolled out new security, search and other features to boost its appeal for businesses.
 
Hackers Breached 1,000 StubHub Accounts
Cyber thieves got into more than 1,000 StubHub customers' accounts and fraudulently bought tickets for events through the online ticket reseller, company and law enforcement officials say.
 

Enterprise Hardware Spotlight
Microsoft Makes Design Central to Its Future
Over the last four years, Microsoft has doubled the number of designers it employs, putting a priority on fashioning devices that work around people's lives -- and that are attractive and cool.
 
Contrary to Report, Lenovo's Staying in Small Windows Tablets
Device maker Lenovo has clarified a report that indicated it is getting out of the small Windows tablet business -- as in the ThinkPad 8 and the 8-inch Miix 2. But the firm said it is not exiting that market.
 
Seagate Unveils Networked Drives for Small Businesses
Seagate is out with five new networked attached storage products aimed at small businesses. The drives are for companies with up to 50 workers, and range in capacity from two to 20 terabytes.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | CRM Systems | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.