Skip to main content

Germany issues alert over iOS jailbreak; Apple promising fix


No sooner goes come back online—enabling iOS device users to jailbreak their devices just by clicking a link—than security alerts start flying. Germany’s Federal Office for Information Security has issued a security warning to consumers (German), warning users to avoidf opening PDF files on Web sites or as email attachments unless users are sure the documents come from a trusted source. Although the exploit enables users to jailbreak their devices—which is legal, by the way—the same technique could be used to deliver malicious software to an iOS device.

So far, Germany’s Federal Office for Information Security has not observed any attacked in the wild based on the PDF exploit.

Related Videos

An Apple spokesperson told Cnet that the company is working on a fix to be distributed in a software update; however, Apple has not outlined any timeframe for patching the loophole.

The JailbreakMe developers have released PDF Patcher 2, an update that fixes the primary vulnerability. However, PDF Patcher 2 can only be applied to jailbroken iOS devices. Jailbreaking an iOS device voids the warranty, and Apple has always strongly discouraged customers from doing so.

In August 2010, the JailbreakMe developers released a similar jailbreak technique based on a PDF exploit; Apple updated iOS patch the security hole in about a week.

Germany’s decision to issue a consumer alert over the PDF exploit highlights how important mobile technology has become, both to consumers as well as to public agencies charged with monitoring consumer and public safety. Where software security alerts used to be the stuff of obscure, geeky mailing lists and a relatively small community of computer security professionals, it seems we’re entering an era where security issues in mobile operating systems are akin to consumer alerts over faulty automobiles, dangerous children’s toys, and exploding batteries.

Editors' Recommendations

Using an Android phone showed me just how bad iOS notifications really are
iPhone 14 Pro with iOS 16 notifications compared to Google Pixel 7 with Android 13 notifications

I’ve been using an iPhone for over a decade. I received the original iPhone as a birthday present in 2008, and after just four months of use (without a case, of course), I dropped and cracked the screen. With the iPhone 3G about to launch, I decided to upgrade to that, and I’ve pretty much bought a new iPhone every year since — including the iPhone 14 Pro.

Before Apple added Notification Center in iOS 5, notifications were just alerts that would interrupt whatever it is you were doing, until you took action on it or dismissed it. And once you dismissed it, that was it — it vanished, never to be seen again, so you may have missed something important if you didn’t remember what it was.

Read more
Ranking all 16 iOS versions, from worst to best
iPhone 14 Pro with iOS 16 with custom home screen

In 2007, Steve Jobs introduced the iPhone on the stage at Macworld Expo in San Francisco. It has been 16 years since that announcement that changed the mobile industry as we know it; today, we now have 16 versions of iOS software that power our iPhones.

iOS has certainly come a long way, with iOS 16 letting us do things on our iPhone 14 that we never thought was possible a decade ago. But each version of iOS has its own strengths and weaknesses, with some releases being better than others.

Read more
iOS 16.3.1 fixes major bugs for your iPhone — and introduces a new one
Lock screen widget for iOS 16.

Apple just released a new iOS update for your iPhone: iOS 16.3.1. There are also updates for iPadOS 16.3.1 and macOS 13.2.1. All of these are relatively minor updates, but they do patch up an actively exploited code execution vulnerability that was found in WebKit/Safari. A second vulnerability was also patched up, though this second one was not known to be actively exploited.

But that’s not all that iOS 16.3.1 brings. This update also fixes an issue with iCloud settings, where it became unresponsive. Another bug fix corrects an issue with using Siri with the Find My feature, where the request would end up failing. If you have a HomePod, there is a HomePod 16.3.2 OS update that will also resolve some Siri issues, where smart home requests would end up failing.

Read more