| Individuals November 11, 2019
November 11, 2019
On September 27th, 2019, checkm8 was announced on Twitter as a “permanent unpatchable bootrom exploit” for any iOS device with an A5 chip up to an A11 chip. At that time, no full jailbreak had yet been released to take advantage of checkm8, but on November 8th, checkra1n was officially released to the world as a way to fully jailbreak iOS devices.
Devices with these chips are:
iOS jailbreaking has long been practiced by people who want to surpass traditional software restrictions on Apple devices so that they can do anything from installing certain apps to customizing the appearance of a device’s interface. Jailbreaking gives users complete access to everything on the device, which also means it can give attackers free reign to modify and bypass iOS security settings. Jailbreaks pose a significant compliance risk to a company as unauthorized modifications to iOS cause that device to fall out of compliance with internal and external parameters. In highly regulated industries such as finance, healthcare, and manufacturing, this can damage a company’s reputation and worse, lead to risky compliance violations.
Lookout jailbreak detection protects customers against checkra1n. Jailbroken devices open up a window of opportunity for malicious actors to take advantage of the device and exfiltrate large amounts of personal and corporate data. By detecting the latest jailbreak methods, Lookout can block access to corporate apps and infrastructure normally accessed by the device to ensure protection of an organization’s assets and prevent a data breach. What’s more, Lookout Continuous Conditional Access ensures that no compromised devices connect to company resources.
Confirmed detection in the Lookout admin console
Lookout will continue to further analyze the threat and ensure continued coverage as it evolves.