Pangu’s BlackHat USA 2016 Presentation: New Jailbreak?
Today I wanted to discuss something that’s spreading throughout the jailbreak space like wildfire: BlackHat USA 2016 and Pangu’s scheduled presentation during the conference. A number of individuals are suggesting that a new jailbreak iOS 9.3.3 utility will be released at BlackHat, but that’s not necessarily true!
Pangu at BlackHat USA 2016
According to the listing for their ‘Pangu 9 Internals‘ talk, Pangu will merely reveal and highlight the inner workings of their latest jailbreak. Pangu is neither scheduled to discuss new jailbreaks for iOS 9.3.3 – iOS 10 nor release an all-new jailbreak utility.
Pangu 9, the first (and only) untethered jailbreak tool for iOS 9, exploited a sequence of vulnerabilities in the iOS userland to achieve final arbitrary code execution in the kernel and persistent code signing bypass. Although these vulnerabilities were fixed in iOS 9.2, there are no details disclosed. This talk will reveal the internals of Pangu 9. Specifically, this talk will first present a logical error in a system service that is exploitable by any container app through XPC communication to gain arbitrary file read/write as mobile. Next, this talk will explain how Pangu 9 gains arbitrary code execution outside the sandbox through the system debugging feature. This talk will then elaborate a vulnerability in the process of loading the dyld_shared_cache file that enables Pangu 9 to achieve persistent code signing bypass. Finally, this talk will present a vulnerability in the backup-restore process that allows apps signed by a revoked enterprise certificate to execute without the need of the user’s explicit approval of the certificate.
So What’s Pangu’s Talk For?
The talk is merely intended to explain something that has yet to be revealed, and hopefully inspire new jailbreakers as a result.
That’s not to say that a new iOS 9.3.x jailbreak won’t be released, just that the hype surrounding Pangu and their BlackHat USA 2016 presentation is, for all intents and purposes, null and void.
Discuss And Get Answers
For those of you who want to discuss this topic, as well as others pertaining to jailbreaking, be sure to visit our forum here.
As always, if you need additional information, I strongly recommend watching my above video. Thank you for reading, and as always stay tuned for more! Join our Jailbreak and Hacks news feed, like us on Facebook, follow us on Twitter and add us on YouTube to be instantly notified when we publish new articles.
✅ Stay tuned for more jailbreak coverage!
iCrackUriDevice’s iPhone Wallpaper
For those of you who want the wallpaper I currently have on my iPhone 6s Plus, look no further than directly below!