ultrasn0w Unlock Coming Tonight for iPhone 4

Planetbeing of the iPhone Dev-Team confirmed that the ultrasn0w unlock for iPhone 4 will be available tonight for all those who need to unlock their newly jailbroken iPhone 4’s.

The Return of the JailbreakMe.com Jailbreak

Back in the 1.x days JailbreakMe.com was the simplest way to jailbreak your device. And now comex and Dev-Team have released the latest userland jailbreak which exploits a PDF flaw in MobileSafari. This means you can jailbreak any iOS device, including the iPhone4 on the 4.x firmware. Because the exploit that was used it public I’m sure it won’t be too long until Apple fix the flaw and then a new exploit will have to be used. As always remember to backup your SHSH files so that you can restore to your current firmware and keep on using JailbreakMe.com in the future.

To jailbreak just open up the site JailbreakMe.com and then slide to jailbreak and then just wait. It’s that simple!

iOS 4 Custom Firmware (w/iBooks Fix)

Yesterday I provided you with Custom Firmware Restore files for all the iDevices that support the new update and can be jailbroken. This morning the Dev-Team released an update as it had the same issue as redsn0w to cause a problem with iBooks. Obviously if you don’t intend on using iBooks you don’t need to re-download it but I will be re-uploading the firmwares (without custom boot logos) with the fix for iBooks.

Please read this Dev-Team article before using any of the custom restore files.

iPhone 3GS iOS 4 Custom Restore (Root Size 831MB)
Hactivated – iPhone2,1_4.0_8A293_Custom_Restore_(Hacktivated).ipsw
Not Hactivated – iPhone2,1_4.0_8A293_Custom_Restore.ipsw (Alt Link – MegaUpload)

iPhone 3G iOS 4 Custom Restore (Root Size 756MB)
Not Hacktivated w/Multitasking Enabled – iPhone1,2_4.0_8A293_Custom_Restore_(Multitasking_Enabled).ipsw
Not Hacktivated – iPhone1,2_4.0_8A293_Custom_Restore.ipsw
Hacktivated w/Multitasking Enabled – iPhone1,2_4.0_8A293_Custom_Restore_(Hactivated_Multitasking_Enabled).ipsw
Hactivated – iPhone1,2_4.0_8A293_Custom_Restore_(Hactivated).ipsw

iPod Touch 2G iOS 4 Custom Restore (Root Size 688MB)
With Multitasking Enabled – iPod2,1_4.0_8A293_Custom_Restore_(Multitasking_Enabled).ipsw
Without Multitasking Enabled – iPod2,1_4.0_8A293_Custom_Restore.ipsw

iPhone iOS 4 Custom Firmware

Today PwnageTool 4 was released for the Mac and seeing as now I have a MacBook I thought I’d create some custom firmware for all you Windows users who don’t have an official tool as of yet.

Below are the links to the files, I will update them as I upload them and feel free to share this post with others.

Please read this Dev-Team article before using any of the custom restore files.

Details: Only non-hacktivated firmwares without Multitasking Enabled come with custom boot logos, root size is shown in brackets next to the device (I just used the default setting.)  Also baseband update is not enabled.

iPhone 3GS iOS 4 Custom Restore (Root Size 831MB)
Not Hacktivated (w/Custom Boot Logos) – iPhone2,1_4.0_8A293_Custom_Restore.ipsw
Not Hactivated – iPhone2,1_4.0_8A293_Custom_Restore_(Without_Custom_Boot_Logos).ipsw
Hactivated – iPhone2,1_4.0_8A293_Custom_Restore_(Hacktivated).ipsw

iPhone 3G iOS 4 Custom Restore (Root Size 756MB)
Not Hacktivated (w/Custom Boot Logos) – iPhone1,2_4.0_8A293_Custom_Restore.ipsw
Not Hacktivated – iPhone1,2_4.0_8A293_Custom_Restore_(Without_Custom_Boot_Logos).ipsw
Not Hactivated w/ Multitasking Enabled – iPhone1,2_4.0_8A293_Custom_Restore_(Multitasking_Enabled).ipsw
Hactivated – iPhone1,2_4.0_8A293_Custom_Restore_(Hactivated).ipsw
Hacktivated w/ Multitasking Enabled – iPhone1,2_4.0_8A293_Custom_Restore_(Hactivated_Multitasking_Enabled).ipsw

iPod Touch 2G iOS 4 Custom Restore (Root Size 688MB)
Without Multitasking Enabled (w/Custom Boot Logos) – iPod2,1_4.0_8A293_Custom_Restore.ipsw
Without Multitasking Enabled – iPod2,1__4.0_8A293_Custom_Restore_(Without_Custom_Boot_Logos).ipsw
With Multitasking Enabled – iPod2,1_4.0_8A293_Custom_Restore_(Multitasking_Enabled).ipsw

If you have any requests that aren’t shown above then get in touch via Twitter @sbraidley

iPhone 4 To Have 512MB of RAM

Apple are never open about the actual real specs of the iPhone. We know the iPhone 4 uses a A4 chip but we don’t know the clock speed but for Apple to keep up with todays competition it’s been reported that the new iPhone will have 512MB of RAM instead of the 256MB that the iPhone 3GS has. This will give a lot more head room for games, multitasking and other memory hungry apps.

This will also hopefully mean that for the jailbreak community that with the extra CPU speed and double the RAM that WinterBoard and other modifications will run a lot smoother and you can have a lot more complex themes.

Spirit Released for iPhone, iPod Touch & iPad

The day has finally come, comex has released Spirit, the first userland jailbreak since the 1.x era. It runs on the latest iPhone OS firmwares (3.1.2, 3.1.3 and 3.2). Spirit is an untethered jailbreak which comes as great news to many 3rd generation iPod Touch & iPhone 3GS users who have the MC models who were stuck with a tethered jailbreak for months.

It works on all the iDevices but on the iPad, all this is still sort of beta. Some packages in Cydia, not designed for iPad, might screw up your system and require you to restore.

You can download it from SpiritJB.com

iPad Jailbroken & Cydia Running

MuscleNerd of the iPhone Dev-Team has revealed a video showing a successful jailbreak of the iPad. The new hack exploits a bug found on the 3.2 version of the iPad OS, however with the iPhone OS 4.0 being previewed on April 8th plans for a release of this jailbreak might be changed so that Apple can’t patch the bug. In a recent picture it shows Cydia running on the device.

iPhone OS 4.0 Only For 3G and 3GS?

According to a source, the new iPhone OS 4.0, which is rumored to be shown at the upcoming Apple event; will include multitasking, which has been wanted for a long time but many iPhone users but only those who jailbreak the device can use this feature. The source also says there will be a new UI, “to make navigating through the OS easier and more efficient” and also OS-wise mutli-touch gestures. However I see it unlikely that Apple will majorly change the UI of the OS as they like to keep things familiar.

The source also says how they will also be “some brand new syncing ability for the contacts and calendar applications” but that the new OS will only be available for the iPhone 3G and 3GS, this makes sense for the multitasking as the iPhone 2G doesn’t have enough RAM to be able to multitask properly.

iPhone Security Issues Not Exclusive To Jailbroken Devices

In the past few months there have been multiple worms released into the wild that affected inadequately protected jailbroken iPhones. However a Swiss iPhone developer has published research that indicates that there are also security vulnerabilities affected un-jailbroken devices too. This doesn’t come as much of a surprise to most as it was only a matter of time.

The developer, Nicholas Seriot has created a proof of concept app called SpyPhone to demonstrate how Apple’s own APIs can be used to read and edit user’s address books, gain access to the user’s web surfing history or even recent location information. Although this is not as bad as what can be done with root permissions to the device, it can still effect users, especially when they think they are safe.

For the attacks to work, the application with the malicious code would need to get through the App Store approval system, however this wouldn’t be very hard as pointed out by many developers, as Apple doesn’t check source code but does have a kill switch on every app. The code would be delayed, so that it only beings to work so many weeks after the app is released or it could be an encrypted payload.

Nicholas Seriot detailed these possible iPhone privacy risks in a talk he delivered in Geneva, during which he also outlined possible defense strategies, suggesting that Apple should design the iPhone OS to require users to authorize read or read-write access by iPhone applications to potentially sensitive on-device information such as the Address Book, add firewall functionality to the device and ensure the keyboard cache is not as readily available to third-party applications.

Developers Research

Related:
How To: Change Your iPhone’s SSH Password

Dutch Hacker Hack’s Into Jailbroken iPhone’s
iPhone Worm Rickrolls Jailbroken Devices
Second iPhone Worm Used For Malicious Purposes

Second iPhone Worm Used For Malicious Purposes

There has been news today of yet another iPhone worm that affects users who have unsecured SSH installed on their device.

Security Company, F-Secure, has unearthed this latest worm for the iPhone which targets people in the Netherlands, as it did before with the first exploit of unsecured SSH. It targets users who use their iPhone to online bank with ING. Much like a phishing attack, it redirects the bank’s users to a look-a-like website with a log-in screen.

The worm only affects jailbroken devices as before, and only devices with SSH that has the default password are affected. This latest worm is more serious than the ones prior, as they were created to warn people, that things such as this could happen. The security company, F-Secure, have also said that it can behave like a botnet and send itself to other un-secure devices on a local WiFi network.

The phone can be controlled by the hacker remotely without the knowledge or permission of the user. Hackers can ring people, text people, copy your contacts or what ever they wish with your device if it’s left open. At the moment it’s only spreading around the Netherlands, but soon enough malicious hackers will most likely take advantage of the users who don’t change the default password.

A spokesperson for ING Bank said that a warning was going to be put on the bank’s official website.

“We are also briefing call centre personnel,” she added. “It’s important to remember that the worm only affects jail-broken phones and it is only aimed at customers in the Netherlands.”

If your device is jailbroken and you believe SSH maybe, or is installed then please read this guide to secure your device. Many other guides will not fully protect you as they only change the mobile user password and not the root.

If you wish to read more from F-Secure on this issue click here.

Related:

How To: Change Your iPhone’s SSH Password
Dutch Hacker Hack’s Into Jailbroken iPhone’s
iPhone Worm Rickrolls Jailbroken Devices