• VieuxQueb@lemmy.ca
    link
    fedilink
    arrow-up
    7
    arrow-down
    1
    ·
    1 year ago

    So, there is going to be a backdoor that uses NFC to triger an update. And probably locally transmitted since the phones have no wifi credentials to connect.

    I guess someone will find a way to flah a hacked version of ios onto unsuspecting users buy placing iPhone’s on his NFC updating device. I hope they at least disable that feature as soon that the phone has an account associated. But again someone could install malicious ios version in store, you buy a new iPhone and it’s already hacked before you got it !

    • flooppoolf@lemmy.world
      link
      fedilink
      arrow-up
      5
      ·
      edit-2
      1 year ago

      There has been no custom iOS IPSWs to flash since like 2009. If the IPSW firmware is not signed prior to the device being flashed your device will simply not boot. You might be correct about it being to do with NFC but the most likely thing is that they will be hooking up a wand to a computer and handling connections that way.

      Maybe the wand scans all iPhones and the computer manages all the signing and I also assume wireless connections between the boxed units.

      any such tool has been absolutely locked down by Apple and now even requires a VPN connection to their internal network to even work.