Secret Meeting Reveals How to Break Apple

Secret Meeting Reveals How to Break Apple's Security

  • By Ginger Hill
  • Mar 11, 2015

Jamboree, a large celebration or party, typically very lavish and boisterous, is the name given to the secret annual meeting of security researchers who have been working with the CIA. These researchers gather to share their tactics and strategies for exploiting security flaws in household and commercial-grade electronics. And, The Intercept just happened to obtain some top-secret documents in which they report that one of the goals of the meeting was to determine how to break the security of Apple’s iPhones and iPads.

So, what exactly were these researchers getting boisterous about while I assume sipping on 100-year-old wine and snacking on gourmet hors d'oeuvres?

During their research, essential security keys stored on Apple devices, used to encrypt data, were targeted by the use of physical and non-invasive techniques to discover ways to decrypt the Apple-stored data and penetrate Apple’s encrypted firmware. Malicious code could then be planted onto the Apple devices and used to search for other encryption-masked vulnerabilities.

These researchers also claimed that they had modified a version of Xcode, Apple’s proprietary software development tool and the OS X updater, the program used to deliver updates to devices. With the researcher’s version of Xcode, surveillance backdoors could sneak into any apps or programs, enticing and enabling spies to steal passwords and other data. With the modified OS X updater, a keylogger could be installed.

Funding for this near-decade worth of research is said to have come out of the pockets of the CIA; however, the CIA as well as Apple declined to comment.

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Allegion, Comfort Technologies Implement Mobile Credentials at the Artisan Apartment Homes in Florida

    Artisan Apartment Homes, a luxury apartment complex in Dunedin, Florida, recently transitioned from mechanical keys to electronic locks and centralized system software with support from Allegion US, a leading provider of security solutions, technology and services, and Florida-based Comfort Technologies, which specializes in deploying multifamily access control, IoT devices and software management solutions. Read Now

  • Mall of America Deploys AI-Powered Analytics to Enhance Parking Intelligence

    Mall of America®, the largest shopping and entertainment complex in North America, announced an expansion of its ongoing partnership with Axis Communications to deploy cutting-edge car-counting video analytics across more than a dozen locations. With this expansion, Mall of America (MOA) has boosted operational efficiency, improved safety and security, and enabled more informed decision-making around employee scheduling and streamlining transportation for large events. Read Now

  • Security Industry Association Launches New “askSIA” AI Tool

    The Security Industry Association (SIA) has unveiled a brand-new SIA member benefit – askSIA, a conversational AI agent designed to help users get the most out of their SIA membership, easily access SIA resources and find the latest information on SIA’s training and courses, reports and publications, events, certification offerings and more. SIA members can easily find askSIA by visiting the SIA homepage or looking for the askSIA icon in the top left of webpages. Read Now

    • Industry Events

  • Industry Embraces Mobile Access, Biometrics and AI

    A combination of evolving workplace dynamics, technology innovation and new user expectations is changing how people enter and interact with physical spaces. Access control is at the heart of these changes. Combined with biometrics and AI, mobile access control has become increasingly crucial for deploying entry solutions that are seamless, secure and adaptive to user needs. Read Now

  • Sustainable Video Solution Delivered for Landmark City of London Office Development

    An advanced, end-to-end video solution from IDIS, with a focus on reducing waste and costs, has helped a major office development in the City of London align its security with sustainability objectives. Read Now

Most   Popular

New Products

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.