iOS 10.2, 10.1.1, 10 Jailbreak Update
With Apple having announced the tenth iteration of its mobile operating system during the WWDC 2016 opening keynote, it was only a matter of time before developers and power-users alike started to ask the all-important question – can it be jailbroken? As it turns out, it can. The first to confirm the same was Canadian hacker extraordinaire iH8sn0w – known for jailbreak tools Sn0wbreeze and iFaith – who broke through the defenses of the latest from Apple on an iPhone 5.
Note: We will be updating this post constantly as news of iOS 10 and its jailbreak status further unravels, so don’t forget to check back! Last updated: 1/26/2017
Important Update: The first publicly available jailbreak solution for iOS 10 – iOS 10.1.1, called yalu + mach_portal, is out! Scroll down to Update 4 for details.
Important Update 2: A separate tool for iOS 10.2, called yalu102, has been released. Scroll down to Update 6 for details.
In a video uploaded to YouTube, iH8sn0w shows an iPhone 5 running the iOS 10 developer beta 1 with an untethered jailbreak exploit employed and Cydia running. You can watch the video below. It shows the hacker deleting the stock Mail app to prove the firmware on the device is in fact iOS 10, and then rebooting the device to show that the jailbreak is untethered.
Of course, at this point, this is no more than a demo – a proof-of-concept that demonstrates the beta is vulnerable to a certain exploit. The developer has made no remarks as to whether this will ultimately constitute a working jailbreak tool. Remember that hackers are known to have kept working jailbreak exploits under wraps after posting demos.
Perhaps a more likely source of the next jailbreak solution is Pangu – the Chinese dev team behind jailbreak tools for iOS 8 through iOS 9.3.3 – who showed off a working iOS 10 jailbreak at the 2016 Mobile Security Conference in Shanghai.
Pangu iOS 10 jailbreak demo at MOSEC 2016, Shanghai (via Weibo)
Another video demo, shared by Italian security researcher Luca Todesco on his Twitter account, shows an 64-bit iPad going through a one-tap jailbreak and then successfully running Cydia. Luca’s solution isn’t likely to be made available to the community, though, as the developer has been known to demonstrate working jailbreak exploits sans public release. That being said, Tedesco hasn’t explicitly ruled out said possibility.
As with all updates, iOS 10 too kills quite a few jailbreak tweaks with its new Raise to wake and Bedtime features, redesigned lock screen and Today view, new uses for Apple’s proprietary pressure-sensitive 3D Touch technology, interactive notifications and much, much more. It’ll be interesting to see what the jailbreak community makes of these changes and how existing Cydia tweaks are molded to match them.
What are your hopes for the next jailbreak? Let us know in the comment section below!
Update: Another hacker has joined the foray, with @ijapija00 tweeting out jailbreak video demos for iOS 10.1.1 and then iOS 10.2 beta 1. It is, again, unclear whether or not the developer will be packing the jailbreak into a public release. You can watch the video demo for iOS 10.2 beta 1 below.
Update 2: Google’s Project Zero has detailed an exploit that can be used to achieve root access on iOS 10.1.1. Unless you’re a developer, though, this development shouldn’t be of much significance to you, that is, until said exploit is packaged into a full jailbreak tool usable by the general public.
Update 3: During the iOS 10.2 beta release cycle, hacker Luca Todesco revealed that the firmware is harder to jailbreak than its predecessor as it apparently plugs several bugs that might have been employed in jailbreak exploits. Following its final release, Todesco has once again suggested that users intending to jailbreak should stay on iOS 10.1.1, citing the aforementioned iOS 10.1.1 exploit published by Project Zero, and that he may “write a full jailbreak” on top of said exploit.
Update 4: Luca Todesco delivered on his promise today (12/22) by publicly releasing an iOS 10 – iOS 10.1.1 jailbreak tool built atop the aforementioned Project Zero exploit. The yalu + mach_portal jailbreak app’s IPA is available to download right now though it requires Cydia Impactor to be updated to work. We’ll be sure to update this post when that happens. Note that the tool is compatible with a select few devices at the moment, with only the iPhone 7, iPhone 6s and iPad Pro supported. For further details on the tool, check out the following: Download: Yalu + Mach_Portal Jailbreak App For iOS 10 – iOS 10.1.1 Released.
Update 5: The author of the yalu + mach_portal jailbreak has tweeted out a warning for users who missed their chance to jailbreak on iOS 10 – 10.1.1 with the tool, suggesting that they stay on iOS 10.2 and away from iOS 10.2.1, as there is a chance that said tool could be updated with support for the former, though only for devices other than the iPhone 7. Luca also reminded users to save SHSH blobs for iOS 10.2 using the TSSChecker tool while Apple continues to sign the firmware.
Update 6: Luca has partnered with developer Marco Grassi to release a “yalu102” jailbreak for iOS 10.2, complete with support for Mobile Substrate. To download the tool or read more about it, head on over to this post: Download: yalu102 Jailbreak App For iOS 10.2 Released.