Hackers have stolen over 225,000 Apple user's account information from countries all over the world—including the United States, China, and France—in what many are reporting to be the biggest known Apple hack in history.
Using a type of malware dubbed "KeyRaider," hackers have been able to target jailbroken devices through a Cydia repository. The malware steals Apple account usernames and passwords, push notification service certificates, private keys, and App Store purchasing information. The hackers even have the ability to disable you from entering your device all together, effectively holding it hostage, which is something known as ransomware.
To find out if you've been affected, researchers over at Palo Alto Networks have provided a very thorough guide that you should definitely check out, detailing where the malware comes from, what it steals, who created it, and how to find out if it's on your iPad, iPhone, or iPod touch.
If you're part of the 225,000 exploited users, you should take the necessary steps to ensure that no one can use your password to purchase apps or lock you out of your device. That means unjailbreaking your device, changing your password, and enabling two-step verification, which I'll show in more detail below.
Step 1: Remove Jailbreak from Your iPhone
The first thing you should do is unjailbreak your iPhone so that you can remove root-level privileges and disable unsigned code from running, which is what allows KeyRaider to snatch up your information.
Lucky for you, the process is as simple as putting your device into recovery mode (DFU), connecting it to your computer, and restoring it back to normal. Follow Justin's guide on downgrading from an iOS beta, which is the exact same process as unjailbreaking your device.
Step 2: Change Your Apple ID Password
Since KeyRaider steals your Apple credentials, you also need to reset the password for your Apple ID. On your computer, go to My Apple ID, click on Manage Your Apple ID, then enter your existing credentials.
Next, click on "Password and Security" and answer the two security questions.
Finally, click on "Change Password," enter your old password, then enter a new (and once again to verify it). Hit "Change Password" at the bottom to save your new password and you're done.
Step 3: Enable Two-Step Verification
The last thing you need to do is enable two-step verification on iOS, which adds an additional layer of security to your Apple accounts. Make sure to check out our guide to enabling two-step verification on your Apple ID for iCloud, the App Store, and iTunes to quickly set it up.
If you're thinking about jailbreaking, which is still a great tool for customizing your device, you should wait until this whole hack gets patched up. One simple attack shouldn't deter you from jailbreaking in the future, as long as you're cautious with what you download.
Follow Apple Hacks over on Facebook and Twitter, or Gadget Hacks over on Facebook, Google+, and Twitter, for more Apple tips.
Just updated your iPhone? You'll find new Apple Intelligence capabilities, sudoku puzzles, Camera Control enhancements, volume control limits, layered Voice Memo recordings, and other useful features. Find out what's new and changed on your iPhone with the iOS 18.2 update.
3 Comments
You have to remember that Rooting or Jailbreaking your phone opens a bunch of security vulnerabilities.
even if you dont root your device there will always always always be a way to hack anything and everything. there is no such thing as unhackable so far. show me one.as long as something runs on a script programmed by a human that is programmed it has to be accessed by the programmer and so it is accessible by the maker then it is also accessible by a hacker so dont ever think its 100%. jailbreaking is more hackable or more open but dont think you are safe because you are not jailbroken. This is a problem and always there are updates but in history there have been so many things hacked and i just dont see how you can constantly unhack or rewrite everthing or fill all the loopholes everywhere. maybe speed is unhackable. i dont know.
at least if you buy a samsung you can do some tweaks without rooting or jailbreaking but then again if you want the good tweaks you have to root which is just like jailbreaking. The good thing is with andoid root you dont have to reinstall your whole ios to keep apps from not working on later ios which in turn looses your jailbreak. SO with apple jailbreaking is a constant pain becuase when a new ios comes out all the apps update leaving you with outdated unupgraded apps with dont work properly thus making you rejailbreak over and over again which is an endless process exspecially if you have music on your device with no sd card which makes it even worse becase now you have lost everthing and have to reinstall everything all over from zero. thats why i use android becasue apps runn on older versions i havent lost my root yet and my old phone just keeps running without having to reinstall every app there is. im so glad i dont have to go through that again.
Share Your Thoughts