Zibri posted today what many believe to be obvious, he says he can crash any iPhone/iPod, and I believe him. I have done it in the past with one of his version of Zibony. Oh wait - he is talking about a New ZiPhone! - oh well let’s hear what Zibri has to say now:

I’m not rushing..

Since I received many requests for updates,
here you have a few:

At the moment I’m testing and tweaking what could be
the next ZiPhone version.

As it happened the first time, I’m not rushing and
as it already happened in february I’m not even sure I
will release it.

As of now, my own iPhone is on 1.1.4 (and happy to be).
My test iPhone is on 2.0.1.
My iPod is on 2.1 (unmodified).

I’m also working on a few other things:

I just found something that can crash any iphone/ipod
and exploitability is being investigated.
This vulnerability anyhow affects all models and firmwares.
I can’t tell you more about this.

Since this bug is VERY serious I have yet to decide what to do with it.
If Apple is interested I think they know my email address.
If they are not… well they will know sooner or later.

Anyhow, the ZiPhone “proof of concept” I’m using had no problems with
the new iTunes 8 release. And the bug I found works on 2.1 too.

Zibri, no rush…

 Retweet This Post

Join the forum discussion on this post - (1) Posts

Rumors, iPhone, iPhone Unlock Updates iPhone, zibri, ziphone

Ah Zibri. We should have all known that Zibri was going to say that it was the Dev Team who stole his idea when they created and released QuickPwn as they once again beat the Italian to the punch.

He is suggesting that the Dev Team decided to do away with PWNAGE and fashion QuickPWN after Ziphone.

Which comes first? The Chicken or the Egg?

 Retweet This Post

Join the forum discussion on this post - (1) Posts

3G iPhone, Rumors, What's New, iPhone Unlock Updates dev team, pwnage, quickpwn, zibri

After a long hiatus, some say due to the lack of ‘borrowed’ source code, or others say due to the frustrations of the so called ‘ungrateful‘ iPhone unlocking community, Zibri is back - er, sort of.

Developing…

Posted by Zibri at 9:16 PM

Suspiciously this news comes right around when the Dev Team have released/announce QuickPWN for the iPhone. The Dev’s have said that this release is Open Source and can be easily ported into a nice GUI by developers. Obviously someone testing QuickPWN, leaked the source to Zibri who may be quickly trying to put something together, but unfortunately or fortunately (:)) the Dev Team beat him to it.

What do you think?

 Retweet This Post

3G iPhone, What's New, iPhone dev team, General iPhone, zibri, ziphone

I found this over on iPhoneFreakz.com (original post here), it’s a very long post, but well worth the read.

Pumpkin from the Dev Team, posted an article speaking about PWNAGE, Zibri and his claims about using “Open Source” code to create ZiPhone and his “real hack”.

If you are a Zibri fan or a Dev Team fan, or just an iPhone user looking for the best solution, I think you should read this.

From here on is the article:

The following opinions are mine, and not those of the DevTeam as a whole, although many members agree with me:

 

Free thoughts…

 

There’s something that’s been on my chest for awhile, and it’s been bothering others on the team as well. The name of this particular thorn in our sides begins with the letter Z and ends with “ibri”. Yes, I’m sure all of you are rolling your eyes at the “drama” we hacker “kids” are stirring up, but I’m sure if you had your work taken without permission, you would feel the same way. It’s particularly galling that he is still spreading FUD on his blog in an attempt to save face. I’m going to try to address some of them in this post.

 

Zibri implies that our jailbreak is not “real”, saying instead that our release is a “software upgrade, total internat [sic] firmware modification and custom firmware”.

 

For him, a “real hack” works in a few minutes because it only needs to modify a few bytes here and there.

 

When Pwnage 1.0 was released, it was indeed the ultimate hack for the iPhone/iPod Touch. Never before had the devices been under the user’s control from the very bottom up. Prior, less sophisticated jailbreaks were still subject to the whims of the kernel, which couldn’t be modified because the bootloader checked its signature and refused to boot if it was incorrect.

 

Back in those days, the definition of “hack” above was still a feasible one, as the chain of trust ended at the kernel. Once you gained write access to the root filesystem, you could run arbitrary programs and make patches at will to many system components. Indeed, many such patches were needed, to make activation allow unapproved SIM cards, and to make Springboard display unauthorized apps.

 

Fast forward back to the present, and you’ll see the situation has changed. Solutions that using a ramdisk simply made a change or two to the filesystem now must contend with the mighty kernel’s signature checking of all installed apps and libraries. Mounting the root filesystem and modifying /etc/fstab to make it writable is quite alright, but the moment you make patches for activation or anything else, the kernel will refuse to run the modified programs, unless you can somehow steal Apple’s private signing key. Furthermore, such a jailbreak would be essentially useless because the system would refuse to run any of your custom software (such as Installer.app or Cydia), again because of the lack of signatures on it.

 

Given the above situation, it becomes clear that if you want to use 2.0 for anything but screenshots, you either need to get ahold of Apple’s signing key (start preparing your army now) or you need to patch the 2.0 kernel. Hard as we tried, we couldn’t find much of an army, so we took the latter approach.

 

We adapted our Pwnage technique to the 2.0 firmware, using a new unreleased exploit that we’d been keeping to ourselves, in the hope that Apple wouldn’t patch it. This allows us to cut the signature checks out of the device bootloaders, allowing us to remove signature checking from the kernel, and enabling you to run all the custom software and patches you please.

 

Please note other than my facetious army suggestions, patching the bootloaders is the _only_ way to get a functional jailbreak for 2.0. Under the aforementioned definition of “real hack”, there is no such thing as a “real hack” for 2.0. I hope you agree with me by now that Pwnage, the exploit it uses, and its subsequent obliteration of the device’s chain of trust, is a “real hack”.

 

More FUD is spread by this undying rumor of “Palladium” (or TPM) being used fully on Apple’s devices, making it impossible for you “to play online with legit buyers.” This is nothing but uninformed nonsense, and while there is the potential for some definition of trusted computing on iPhone and iPod Touch, Apple is not using it, and they have no way to remotely distinguish your pwned device from a legitimately activated one. This should have been obvious from our examples of running App Store applications next to our custom ones, but “obvious” is a very relative term.

 

On an unrelated note, I and the others take issue with Zibri’s definition of open source. No, Linux distributions are not stealing, but our work was not released as open source, with any kind of permissive license, so the open source he brings into the discussion is entirely irrelevant. He took our work, our private exploits (such as the unreleased one we were able to use for Pwning 2.0), and without our permission (trying to defame us with fake comments, no less) used them in his work, that he made significant amounts of money on. He did this not by selling “his work”, but by portraying himself as the reasonable “dev” who fought against the tyranny of the dev team and Apple, and requesting donations to his “cause” (recall his older iphone-elite.googlecode.com and his self-righteous bashing of the dev team for accepting donations; funny how principles change). Furthermore, with his millions of hits and occasionally obscene ads, he made his site into a complete money machine. So although he did not sell our work, it is more than fair to say that he made plenty of money from it.

 

And as to his most recent update, I’m not really sure what to say. I’d call it the swan song, but that would imply he was a swan, which is certainly not my intention. Maybe the chicken song would be more appropriate. ZiPhone was “developed” 9 months after the iPhone release, so he’s justifying his lack of releases now, okay. Once again he pushes the “real hack” idea, which we hope we’ve already pounded sufficiently into the ground above. We’re not sure how the fact that we were so popular it took down multiple unmetered gigabit servers is a point in his favor. We’ve had close to a third of his total visits since last week.

 

I want to dedicate a special paragraph to something that’s been bugging us for a while, too. The myth that ZiPhone never harmed a phone. Certainly, we all know that iPhones are almost impossible to brick, but flashing unmatched fls/eep pairs to the baseband is plain irresponsible on Zibri’s part. Does he not care about messing up phones, or does he simply not know better? And the laughable WiFi fix he released for issues that he called “user error” (actually a consequence of the above design choice) where he unconditionally set every ZiPhone WiFi MAC address to 0:Z:i:b:r:i? How did he expect that to work? It doesn’t take a networking genius to figure out that two such phones on the same network would cause havoc, and indeed it did.

 

The following few “facts” on his blog are just more FUD. Our tools can’t kill iPhones, because the only way to kill an iPhone through software (and even then just the radio) is to flash an incomplete image as the S-Gold bootloader. Apple cannot remotely kill pwned iPhones because as I mentioned earlier, it has no way to detect which iPhones are pwned.

 

I’m not sure why he goes on to say that you should be satisfied with Apple’s AppStore. It certainly contains many good programs, but to quote Zibri just a couple of weeks earlier:

 

As of today you will have 2 choices:

1) Believe in the community and don’t upgrade to 2.0

2) Say goodbye to Installer and freedom and upgrade.

 

So are you suggesting we say goodbye to freedom now? I guess we can’t expect much from someone who made a reputation for himself by denouncing the devteam for accepting donations (not even soliciting them) and who now has a website full of ads, exhortations to donate, and very little content? Now we have given you a nice opportunity to upgrade to 2.0, use the AppStore _and_ use community apps. If he really wanted the good of the community, why is he not recommending it?

 

I would normally just ignore his entries, but as many still look at Zibri as an authority in the scene, I felt the need to dispel some of the FUD he was spreading, and finally denounce his pathetic attempts to stay relevant. Posting the latest root filesystem key after we release PwnageTool? PwnageTool exposes all the keys right within its plist files. And if he knew about the DFU exploit all along, as he implies, why didn’t he take advantage of it? We would like to see him write up an article on how it all works, just to prove that Zibri knows all.

Thank you for your patience reading this. We will continue working hard on providing quality hacks and software, but please, to anyone who’s tempted, stop spreading bullshit about us and our work.

Update: Zibri answered this with an epic fail of a status update

 Retweet This Post

Off Topic, iPhone iPhone, pwned, zibri

There seems to be a fake Zibri 3.0 unlocking tool going around (you can have find a download link here) that seems to be nothing more than garbage in the code. Users on Hackint0sh are saying that it doesn’t work and it’s nothing more than a waste of time.

“Just looks like a FAKE C++ program with switch-case menu that shows options like.. Unlock, Activate, etc. And it says - “By Zibri”. Then how come it’s not on Zibri’s blog !” says jashsayani over on Hackint0sh, who’s also a blogger over on The iFone Blog. Anyone who wants to take a look at the code check out the file called Wanga_Tool.bat. Users who have examined it, have said that it does nothing more than loop with pings to localhost. I know most of you are not interested in trying it in the event that it bricks your iPhone or you waste allot of your day, here are some screen shots and I’ll post any new info, but so far this is fake.

Anyone willing to try, please let us know your results, but I am not willing to try it myself at this moment. Will PWNED coming soon, I am not in any rush to brick my iPhone or encourage any of you readers to either.

 Retweet This Post

Rumors, What's New 2.0, 3G, iPhone, rumors, unlock, zibri, ziphone

There has been allot going on this weekend with the jailbkreak and unlocking of iPhone 2.0. Unfortunately/fortunately I was at a wedding yesterday so I missed allot of it, but I am glad to be here today to post the craziness that’s been going on, or as they would say in Trinidad, “bacchanal”.

The Dev Team have been working really hard on a really great new version of their jailbreaking, activating, and unlocking tool called PWNED/PWNAGE that allows you to build custom firmwares that can be bundled unlocked with Installer and other custom settings, so a simple restore leaves the users iPhone/Touch unlocked, jailbreaked and activated, ready to be used as they wish in any country. Below is another new video from the Dev Team, this time showing BootNeuter (the unlocking part of PWNED) working on a first gen iPhoen with firmware 2.0 installed.

Bootneuter 2.0 from iphonedev on Video.

GeoHot made some comments on his blog over the weekend that seems to have sparked some debate between himself and the dev team .Here is the source of all the bacchanal.

“iPhone 3G Unlocked?

So I read this on gizmodo. Here’s the truth…

Post beta 4, the ramdisk hack stopped working. Sorry Zibri, guess you’ll have to steal another exploit. They also changed the recovery mode USB protocol to use the control endpoint to send commands.

The possiblity of unlocking, which is very distinct from jailbreaking, is based entirely on the baseband bootloader. Apple doesn’t appear to upgrade the bootloader on phones in the field, probably for fear of breaks. So any old iPhones out there today, regardless of version, can be unlocked.

The iPhone 3G uses a different bootloader, which I believe there aren’t any known exploits in yet. So no unlock.

There is a known exploit in iBoot, on both the old and 3G iPhones. The “the specific date/time is not firm yet” pwnage tool will leverage it to jailbreak all 2.0 software iPhones, 3G and otherwise. Dev team, that date better be soon or I might just have to release yiPhone. The iBoot exploit is yours, use it. You wouldn’t want a repeat of ZiPhone now…“

ROFLMAO @ Zibri - the YiPhone link takes you to a yiphone.org (some sort of timer on it counting the hours until it’s released), that is a direct play on ZiPhone and has this ridiculous picture - LOL. This must have ruffled Zibri’s feathers pretty badly, because he has posted this on his blog:

“Talks, lies, haters, fans.I’m sick of this! This is not a war and not even a game. I originally developed ZiPhone for my own use. Then people asked me to release it and I did. I bought my first iPhone in Semptember 2007.

I released ZiPhone in February 2008. I know you people are crazy about the iPhone but believe me, I am not. I think the 3g iPhone is not worth even buying for people who already have the first generation iPhone. GPS ? I have a TomTom Go device. 3G data ? I have a 7.2 Mb/s card in my laptop. Apps? I have my iPhone. Everything else ? I have my life ! IF and WHEN there will be a new ZiPhone you will be informed. Stop asking, hating, begging. By the way, maybe you don’t know the difference, but ZiPhone was a real hack. Software upgrades or custom firmwares are a totally different thing. A nice proof of concept, a nice work, but that’s not hacking.. But if that will ever be released and that suits your needs, use it. You’ll be (hopefully) happy.

Another note:

I’m being reported of many people faking me on many blogs and sites. Check the profile (if there’s one). And don’t take as gold any word from me that you don’t read here ! To any hacker out there: FACTS speaks louder than words. Peace out, Zibri”

ROFLMAO x2 - sounds to me like he got called out on stealing the exploits that he was using before and now he cant deliver anything because the stolen exploit he was using, no longer works! “Hello?” more like “Goodbye!”

The Dev Team claims that one of the team members must have leaked a copy of the PWNAGE exploit to Geohot, and that’s why he is trying to provoke them into making an early release. Maybe that’s why he is dressing up like Zibri and threatening to release it just as Zibri did.

The Dev Team have been under so much pressure by the community, iPhone users and recently GeoHot, that they have even issued a very interesting statement - that I suggest you read. It sums up GeoHot’s involvement in the Dev Team and the iPhone and why they have not released PWNED yet, and I agree. More haste, less speed. Below is taken from the Dev Teams statement to GeoHot and the community - Rush, rush, rush….

“The majority of iPhone users are not technical - they want an easy, one-stop, simple application that will allow them to quickly and painlessly unlock their phone. If we were to release a crummy command-line based tool that does the immediate job that everyone is screaming for, we’d only end up in the following situation:

1) The technique is released to the world and people use this technique to quickly create GUI apps that they charge cash-money for, or re-release something hacky and horrible that bricks lots of devices, or for example disables the WiFi that then causes more stress that ultimately comes back to us”

2) The technique is exposed to the vendor, allowing them to locate and repair the security hole. Sometimes these security holes span product versions, for example: between the first generation and second generation iPhone. In such a case releasing the knowledge in the middle of the product development cycle is pointless and risks the “usefulness” of the technique - especially if there are existing hacks/techniques that work just fine.

A rushed utility like PWNED, that isn’t working properly, can potentially brick possibly millions of iPhones world wide. A simple terminal version would be like Chinese arithmetic to others who wouldn’t know where to start, and those that understood it, would either repackage it with a crummy GUI and sell it for a fortune or would set up shop and exploit others with unlocking services.

Both scenarios would only come back to haunt them, firstly in the form of bad publicity, and then more importantly, a HUGE surge of disgruntled users with iPhones in all sorts of states of misery, needing tech support on IRC and Hackint0sh.org. It takes testing and perfecting to have a successful launch of any product or software.

So the race is on, GeoHot vs the Dev Team, YiPhone vs PWNED, which comes first? Who will win, will we ever hear from Zibri agian? Stay tuned for more.

Update: please check out the updated videos from the Dev Team showing that they have access gotten full write access to the iPhone OS.

 Retweet This Post

3G iPhone, Rumors, What's New, iPhone Unlock Updates 2.0, apple, dev team, geohot, iPhone, pwned, zibri, ziphone

This guy has got some seriously big calzones to go on TV and say that he tests this on 100 phones before launch (more like 100 people or so use it when its launched, they report bugs then he tries to patch with a update), 4 million ppl downloaded it (maybe 4 million in total of the 10 versions he released - and the warning is a joke. I have an email this morning (one of many) from a guy asking for help after Ziphone ziscrewed his iPhone, and an iPhone on my desk that started receiving “Repair Needed” after using the person used Ziphones “Refresh” or whatever it is and now it cant restore in itunes and only gets error 1101.

.. So you decide - but it’s worth the laugh. - I can’t wait to see what he is going to do next

 Retweet This Post

Off Topic, iPhone funny, zibri, ziphone

This guy has got some seriously big calzones to go on TV and say that he tests this on 100 phones before launch (more like 100 people or so use it when its launched, they report bugs then he tries to patch with a update), 4 million ppl downloaded it (maybe 4 million in total of the 10 versions he released - and the warning is a joke. I have an email this morning (one of many) from a guy asking for help after Ziphone ziscrewed his iPhone, and an iPhone on my desk that started receiving “Repair Needed” after using the person used Ziphones “Refresh” or whatever it is and now it cant restore in itunes and only gets error 1101.

.. So you decide - but it’s worth the laugh. - I can’t wait to see what he is going to do next

 Retweet This Post

Off Topic, iPhone funny, zibri, ziphone