Apple demands DMCA takedown of secret iBoot code leaked on Github

Leak of iBoot and other sensitive code began with low-level Apple employee

apple top secret iboot code leaked on github iphone 6 outdoors
A portion of Apple’s proprietary source code for iOS devices has been leaked online. The code, labeled ‘”iBoot,” is responsible for ensuring only trusted versions of iOS can boot on Apple devices.

Shortly after Apple learned of the leaked source code, the company issued a Digital Millennium Copyright Act (DMCA) takdeown request to Github, requesting its immediate removal. Apple’s DMCA request was published by Github and states that the reason for the request is because “the ‘iBoot’ source code is proprietary and it includes Apple’s copyright notice. It is not open-source.” Github complied with the request and removed it from the repository of a user named ZioShiba.

Although the leaked code appears to be for an older version of the operating system, iOS 9, it may contain relevant code still used in iOS 11. While Apple does make some portions of its code open source, iBoot has never been included and is closely guarded by the company.

The leak apparently began with a low-level Apple employee, according to a story on Motherboard.  The story claims that friends encouraged the employee to share code to help them conduct security research. Motherboard also claims that iBoot was not the only sensitive code shared by the Apple employee; the story says it was provided with screenshots of additional code that was dated around the same time.

According to Motherboard, the Apple employee originally shared the iBoot source code with a group of five friends in 2016. The friends claim to have closely guarded the code, however, the group eventually began sharing the code with a wider group of people and eventually lost track of who had access to the code.

members of the original group that had access to iBoot believe the person who shared it on Github only obtained the code after they lost track of it. They claim that the code posted by ZioShiba was a copy of the code they received.

While ZioShiba was the first to post the iBoot source code on Github, this is not the first time the code has appeared online. Last year, a Reddit user named apple_internals published the same code on Reddit, however it failed to gain the same amount of attention. The code has also been circulating around jailbreaking groups in Discord.

Apple issued a statement assuring users that the leaked code was outdated and there is no need for alarm. “Old source code from three years ago appears to have been leaked but, by design the security of our products doesn’t depend on the secrecy of our source code. There are many layers of hardware and software protections built in to our products, and we always encourage customers to update to the newest software releases to benefit from the latest protections.”

Since 2013, Apple has included a Secure Enclave chip on iPhones. It effectively creates a separate computer within the iPhone to store both encryption and decryption keys, as well as other sensitive data.  Since Secure Enclave uses a physically embedded key to authenticate, it creates a scenario where it’s nearly impossible for hackers to access sensitive information by brute force.

Updated February 9: Clarified reason Apple employee leaked code. 

Smart Home

Amazon sends out physical toy catalog for kids of all ages this holiday season

Amazon confirmed it is shipping a printed holiday toy catalog, "A Holiday of Play," to millions of customers starting in November. The 68-page catalog has QR codes for many toys. A downloadable version links to each product on Amazon.

These cheat codes made gaming history

For almost as long as video games have existed, there have been video game cheat codes. Here are some of the most famous cheat codes, including the legendary Konami Code found in dozens of games.

These 30 Amazon Coupons can help you save on the things you need

Did you know there are thousands of Amazon Coupons and promo codes that you can take advantage of? We found coupons for everything from tech to everyday products. Find out what savings you've been missing out on.

Nearly 700,000 websites are hacked in bid to steal cryptocurrency

In the latest cryptocurrency hack, up to 700,000 websites were targetted in a breach which primarily aimed to steal virtual currencies through a malicious script on websites running Statcounter code. 

Make some time for the best smartwatch deals for November 2018

Smartwatches make your life easier by sending alerts right on your wrist. Many also provide fitness-tracking features. So if you're ready to take the plunge into wearables and want to save money, read on for the best smartwatch deals.

Bigger than Black Friday: Don’t miss the best Single’s Day deals

Thanks to AliExpress, Single's Day – the world's largest retail day – is no longer a foreign affair. If you're ready to do some early holiday shopping or want to score some discounts ahead of Black Friday, we've rounded up some of the…
Emerging Tech

Awesome Tech You Can’t Buy Yet: 1-handed drone control, a pot that stirs itself

Check out our roundup of the best new crowdfunding projects and product announcements that hit the web this week. You may not be able to buy this stuff yet, but it sure is fun to gawk!

Our favorite ebook reader is not a Kindle. Here are all the best options

If you're a bookworm, an ebook reader can be an important part of your life, one that allows you to read your books whenever and wherever you like. But which should you get? Here are five of the best ebook readers available.

Samsung made a $2,700 flip phone with the brains of a smartphone

The Samsung W2019 is a high-end flip phone that comes with flagship specifications such as 6GB of RAM and Qualcomm's Snapdragon 845. The device features a pair of S-AMOLED displays, a dual rear camera setup, and an eye-popping price tag.

Google, Samsung, OnePlus, and Huawei face off in an Android battle royale

The good news is that there are some great options in the Android smartphone market right now. The bad news is that too much choice makes it tough to decide. We compare the Pixel 3 XL, the Galaxy Note 9, the OnePlus 6T, and the Mate 20 Pro.
Product Review

It's so fast it has a clip-on fan. But the Asus ROG phone isn't just for gamers

Is a gaming smartphone only something a mobile gamer should consider buying? In the case of the Asus ROG Phone, the good news is the device is so capable, and a genuinely impressive all-rounder, that everyone should take a closer look…

Apple to boost its Amazon presence with listings for iPhones, iPads, and more

Apple is about to start offering more of its kit on Amazon. The tech giant currently only has very limited listings on the shopping site, but the deal will see the arrival of the latest iPhones, iPads, MacBooks, and more.

Black Friday 2018: The best deals so far

Black Friday is the biggest shopping holiday of the year, and it will be here before you know it. If you can't wait until November 23 to start formulating a shopping plan, we've got you covered.

Get your gaming on the go with this list of the 25 best Android games

The Google Play Store is loaded with both terrific and terrible gaming titles. We vetted the store to bring you some of the best Android games available, whether you're into puzzles, shooters, racing games, or something else.