Pangu jailbreak uses an enterprise Apple certificate

The Pangu is the latest tool for jailbreaking on devices running 7.1 and above the iOS operating system, and is based on an enterprise certificate (enterprise certificate) from Apple that allows installation of non-Apple Store applications.

The security implications of such a tool are very serious because this particular license authorizes the applications that use it to have several privileges on the user's phone than to steal information from the address book and messages or even access the camera and microphone functions.

According to the company Lacoon Security, the Pangu jailbreak tool of a device can be used on all later versions of iPhone (4, 4S, 5S and 5C), and all versions of the iPad, such as Air and Mini.

Since the tool is signed with an Apple certificate, Pangu can bypass all measures σε μια συσκευή iOS και να αποκτήσει αυξημένα προνόμια, που επιτρέπουν την πλήρη πρόσβαση στο smartphone ή το tablet.
Ohoon Bobrov of Lacoon Security reports that the certificate used for the Pangu application is linked to Hefei Bo Fang Communication Technology Co. Ltd. "

We have no information about how the κατάφεραν να αποκτήσουν ένα τέτοιο πιστοποιητικό, το οποίο η Apple διαθέτει σε ένα μικρό αριθμό εταιρειών, μετά από ενδελεχή , which determines whether there is any risk of abuse.

In this case, Apple should probably take the necessary steps to revoke that certificate.

The που χρησιμοποιήθηκαν από τους προγραμματιστές του Ρangu έχουν ανακαλυφθεί από τον Stefan Esser, ένα πολύ γνωστό ερευνητή της of iOS. Esser shared some iOS exploits for educational purposes, but kept many important details to himself. As for the information he shared he did not give his permission for anyone to use it.

The researcher reported that Rangu developers offered to buy iOS exploits, but refused to sell them.

[tweet_embed id = 482004118698217472] [tweet_embed id = 481923306371944450] The Best Technology Site in Greecefgns

Subscribe to Blog by Email

Subscribe to this blog and receive notifications of new posts by email.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).