the door open to hacking

Recent news has cast doubt on the infallibility of the iPhone and more particularly the danger of jailbreaking. This method consists of unlocking the iPhone to have total control and using it beyond the limits imposed by Apple. But that leaves the door open for hackers to access personal data stored or accessed by the device. It should not be confused with the desimlock, which authorizes the use of his device via any operator. As the name suggests, the unlock code works on the SIM card. Jailbreaking acts directly on the device.

Ali-MoutaĂŻbThus, 225,000 accounts, whose mobile terminals were "jailbroken" and using the iOS system, were attacked via malicious software (in 2015?). By jailbreaking their devices, these users de facto removed all Apple security, and allowed hackers to break into the system of infected iPhones. They were able to either carry out ransomware actions (hostage of data and ransom note), or recover personal data such as identifiers and passwords to access the iTunes platform, but also to all useful data to access mailboxes, online accounts …

If for the individual the damage can be significant, for the companies whose employees were attacked, the damage can be even more serious: loss and leak of data, infiltration of the IS… losses which can amount to thousands of euros , or even in millions.

In the case of large organizations, it is common for the latter to impose a code of conduct on their employees or else they have implemented fleet management tools for mobile devices (Mobile Device Management). Conversely, smaller companies, which offer their employees to use their own personal devices in their professional environment, are the most vulnerable and depend entirely on their employees.

For the latter, it becomes imperative to develop awareness campaigns based on:

  • Concrete examples of the dangers they pose to their organization
  • The establishment of a “do and don't” uses charter
  • See the intervention of an expert who will popularize the subject to the greatest number
  • …

As for individuals, users must also be made aware of the risks to which they are exposed. Theft of personal data, via their jailbroken iPhone, can have serious consequences, not just financial, such as the fraudulent use of the victim's identity. Of course, it is difficult to prohibit users (in particular generation Y) who wish to take advantage of programs "outside Apple", to be able to exchange iTunes files, to use games … However, they must be aware that hackers multiply mobile malware and take advantage of these attractive programs to "harpoon" this particularly vulnerable population.

Note also that Apple, to "defend" against the proliferation of jailbreaks, has notified its customers " that any unauthorized modification of the iOS constitutes a violation of the iPhone end user license agreement and, for this reason, we may refuse to repair an iPhone, iPad or iPod touch on which is installed unauthorized software. "A word to the wise!