Apple confirms iPhone supply code leak

Apple throws take-down notice at Git Hub to remove leaked iBoot code

Apple throws take-down notice at Git Hub to remove leaked iBoot code

In report on Motherboard, it was revealed that an anonymous source had posted a portion of Apple's iOS source code on GitHub.

That Apple has been quick to seek removal of the code from GitHub is also proof enough how important the code is for the company.

However, talking to BBC, Cyber-security expert Prof Alan Woodward said that security researchers and hackers will study the code to see whether there are any flaws in it that could lead to unauthorised access to the smartphones.

Users having the latest iOS version have nothing to worry about concerning the potential vulnerabilities. It corroborated information from two sources claiming that they had been given the iBoot code by a low-level Apple employee in 2016, who the publication was unable to speak with. However, as a precautionary measure, the company has removed the code from GitHub via a DMCA takedown notice.

The code began with the statement: "This document is the property of Apple Inc. It is not open-source", said the legal document. This has made the software development platform to remove the controversial iOS source code though enough damage could have already been done. However, multiple copies of the code have already spread online. That said, iBoot is highly sensitive code, and Apple apparently pays up to $200,000 under its bug bounty program to anyone who discovers bugs in the boot up procedure.

For all Apple-related breaking news, follow our News section. However, Apple did not explain how the source code ended up being exposed to the public. Essentially, it is like the BIOS code found in PCs. In any case, Apple will have enough time to secure things up and might issue a patch to cover any risks posed by the leak. Last year, a Reddit user named Apple_Internals posted the code, but at the time, it failed to gain the same amount of attention. The Cupertino, California-based uses a Secure Enclave processor to make jailbreaking nearly impossible, notes DailyMail. "But the leak of this source code is proof that no environment or OS is infallible, and application protection from within the application itself is crucial, especially for business-critical, data-sensitive applications", says Carter.

Recommended News

We are pleased to provide this opportunity to share information, experiences and observations about what's in the news.
Some of the comments may be reprinted elsewhere in the site or in the newspaper.
Thank you for taking the time to offer your thoughts.