You are currently browsing the category archive for the 'GSM' category.
A presentation and paper on Reverse engineering JTAG at the 26th Chaos Communication Congress is now available to download here:
http://events.ccc.de/congress/2009/Fahrplan/track/Hacking/3670.en.html
Other Hacking and reverse engineering papers and talks from the conference can be found here:
http://events.ccc.de/congress/2009/Fahrplan/index.en.html
The hacking track is here:
http://events.ccc.de/congress/2009/Fahrplan/track/Hacking/index.en.html
More on the story here:
This report concerns the theoretical and practical issues with automatically populating mobile devices with reference test data for use as reference materials in validation of forensic tools.
It describes an application and data set developed to populate identity modules and highlights subtleties involved in the process. Intriguing results attained by recent versions of commonly-used forensic tools when used to recover the populated data are also discussed. The results indicate that reference materials can be used to identify a variety of inaccuracies that exist in present-day forensic tools.
The Paper can be downloaded in PDF format from here:
http://csrc.nist.gov/publications/nistir/ir7617/nistir-7617.pdf
More on the paper here:
http://www.testandmeasurement.com/article.mvc/NIST-Develops-Experimental-Validation-Tool-0001?VNETCOOKIE=NO
The tool itself can be downloaded from here:
http://csrc.nist.gov/groups/SNS/mobile_security/mobile_forensics_software.html
The tool is called SIMfill, and it’s a java application that populates Subscriber Identity Modules (SIMs) with reference data and can be used to assess the data recovery capabilities of forensic SIM tools. The package includes an initial set of reference data for use with SIMfill, the source and compiled code, a readme file, a user’s guide, and a video demonstration. It can be downloaded free from:
http://csrc.nist.gov/groups/SNS/mobile_security/mobile_forensics_software.html
According to a survey by the Australian Communications and Media Authority, about 75% of Australians are either “very satisfied” or “somewhat satisfied” with their telecommunications services. I was surprised to see that there wasn’t a massive difference between metropolitan and rural areas, despite rural areas having a much less options and less bandwidth as metro areas. Those users who weren’t happy largely focused on price, customer service and poor mobile reception.
Read more here:
http://www.acma.gov.au/WEB/STANDARD/pc=PC_311777
Here is an article about the security of the newly released iPhone 3.0 software for both iPhone 3G and iPhone 3G S:
http://www.net-security.org/secworld.php?id=7647
Medialets created the world’s first shakable advertisement for Dockers, together with agencies OMD and Razorfish. Users shake their iPhone to make the Dockers guy dance. This ad utilizes the iPhone’s accelerometer as well as audio capabilities and appears in targeted, free iPhone applications.
A research team from Ben Gurion University in Beer-Sheba, Israel, found that talking on a cellular phone harms the mental abilities of the user.
The influence of cellular phones on brain functions and general health has been widely researched in recent years. Most of the experiments try to understand whether electromagnetic radiation is cancerous or not. Researchers from Ben Gurion University and Soreq Research Center for Nuclear Energy have decided to take a closer look at the effect mobile phones have on people’s cognitive functions.
Read more here:
http://thefutureofthings.com/pod/7033/cell-phone-usage-damages-memory.html
Having a rooted phone means you can do tricks like setting up a 3g/wifi bridge. The process starts by using a rooting app to revert the phone to the rc29 build. then using the “android stupidly executes everything you type” exploit to launch telnetd and upgrade the bootloader. After that, the upgrade process is fairly easy. Just flash a new baseband and build. once you’ve got your new custom firmware, you can do future updates using an app from the android market.
Read More here:
You might know some of them but most of them are just an inside code and some can raise red flags.
Here are some of them:
D46 - “Do you want to have sex?”
LG6 - “Let’s have sex”
GNOC - “Get naked on camera”
TDTM - “Talk dirty to me”
LMIRL - “Let’s meet in real life”
See the link below wich includes a video:
The video talks about a couple of people who’s lives are ruled by harrasing calls and threats. They claim that their phones are tapped with special software.
Rick Mislan talks about the software and how easy it is to be placed on mobile phones.
Software such as:
- http://www.mobile-spy.com/
- http://www.world-tracker.com/
- http://www.flexispy.com/
- http://www.e-stealth.com/
- http://www.fonefunshop.co.uk/spyphone/
- http://www.thespyphone.com/allinone.html
Link to Video on YouTube:
http://www.youtube.com/watch?v=uCyKcoDaofg
Learn more here:
http://news.bbc.co.uk/2/hi/programmes/click_online/7991777.stm
It looks and functions like a Blackberry 8830 but it sure is NOT a regular Blackberry. It is locked down by NSA. I am not really sure if it is a good idea at all. NSA is installing the SecurVoice software on it for both voice and messaging as one of the ways to secure the phone. I am sure that there is a whole infrastructure that is required to run his handset services. Even considering all that, I Still believe that a mobile-phone-carrying president opens so many doors for hackers.
Can NSA and Obama get away with using a (persumably) secure mobile phone service and handset? That is the question of the day!
Read more here:
http://blog.wired.com/gadgets/2009/04/obama-to-get-ba.html
It is persumed that the phones can be modified and used in receiving SMS verification codes sent from banks:
criminals have already collected thousands of login details for online bank accounts in countries such as Germany and Holland where banks send a transaction authentication number (TAN) code by SMS to a person’s mobile phone in order to complete transactions.
Read the original post byUltraScan here:
http://www.ultrascan.nl/html/press_room.html#25.000%20Euro%20for%20your%208%20years%20old%20Nokia%201100
Read more about it here:
http://www.arabianbusiness.com/553344-hackers-pay-top-dollar-for-old-nokia-1100-handsets
and here:
http://www.dialaphone.co.uk/blog/?p=2922
Having downloaded the latest beta of the iPhone yesterday (seen above), I started using it today and when a friend of mine asked to use it to dial a phone number, all they saw was this:
I restarted the phone and I got the proper dial screen shown below.
This happened to me again today… So I decided to post it on the inter web 
A man accused of raping a university student was cleared because of the mobile phone footage showing the woman ‘actively’ having sex with him. The jurors voted to acquit the man, who’d been charged with four counts of rape, including two of rape by oral penetration.
Read more here:
http://www.dailymail.co.uk/news/article-1166466/Man-cleared-rape-court-shown-phone-footage-woman-actively-taking-sex.html
Growth projection for the mobile sector does not look good 
Read More Here:
http://www.iphonestalk.com/new-survey-results-bring-good-and-bad-news-for-the-mobile-sector/
A new site dedicated to the Palm Pre Mobile Phone and its WebOS operating system and Application Catalog. Visit it at:
http://www.PreMobilePhone.com
An in-depth look at the new Palm Pre Mobile Phone:
I love how fast it is and how they allow you to have “pages’ of applications running at once… Look at the videos to see what I mean. What I hate is the numbers on the keyboard are Orange just like punctuation marks on the T-Mobile G1… I can’t see them at all! But that’s just me…
Related:
Plam stocks are up.
Google Finance on Palm, Inc.
Is it going to be the iPhone killer? or will it suck like the Google Android did before it? Give it six months and we’ll see 
The video is Long (32 Minutes!).
- It starts with a parody song (as usual!).
- 3:35 Trends for 2009
- 4:30 VoIP cell phones
- 6:40 VoIP on Mobile Phones with T-Mobile (By the way BT has it too!)
- 10:40 Grand Central: A service that rings all your phone numbers at once at the same time on a single number! Watch the demo 
- 12:50 Google Cellular: Free SMS and Voice initiated 411 directory enquiry service
- 16:25 1800 Cha Cha: Ask any question by voice and get answer by text
- 18:00 Voice Messagase by email or SMS services e.g. spinvox, PhoneTag and CallWave
- 21:00 More on Callwave and a feature demo
- 22:35 Popularity Dialer .com
- 23:50 iPhone beginings. How iPhone changed US carriers
- 25:00 iPhone with internet all the time
- 26:30 iPhone shuffle and App Store apps demos like: Midomi, Pandora, Urban Spoon
- 28:30 T-Mobile G1 and Verizon
- 29:30 End with a Song: The iPhone Song
Modding Education for iPhone users AKA ModEdiPhone.com is a new website for all iPhone users who would like to jailbreak their iPhones or SIM unlock them whether they are using a first generation iPhone or the 3G iPhone. It provides guides and step-by-step videos and advice on how to do each hack or mod without any complications. It includes software, firmware, and hardware mods and hacks. It also contains the last five posts from the most popular iPhone blogs and news sites. It is a must visit and subscribe-to website so make sure you add it to your favourites
Here is the link:
http://www.modediphone.com/
Cellphone Gun:
Pen Gun:
A man in the United States used his mobile phone and the social networking service Twitter to inform the world even as he was trying to escape a burning 737. Read or hear more from the ABC:
http://www.abc.net.au/am/content/2008/s2453641.htm
I have previously heard of a case where a man used the twitter service to let people know he was arrested by Egyption authorities:
http://www.cnn.com/2008/TECH/04/25/twitter.buck/index.html
Both stories might be looked at as extreme uses of the twitter service or other micro-blogging and social services. As mobile phones become more location-aware, social networking services such as twitter are tapping into this capability of mobile phones making them even more usable in distress situations or even to report crime. Coupled with cameras, these services in addition to location-aware devices can become effective crime fighting tools.
As predicted, it did take a long time to unlock the 3G version of the iPhone as compared to the 1st generation iPhone. It is never the less a great achievement for the Dev-Team. So, if you are still using a SIM proxy to unlock you iPhone 3G, then this unlock is for you. For all others, this makes no difference at all
For those who do require the SIM unlock I give you this warning: never upgrade you phone to 2.2 as it will unpgrade your modem software making it impossible to unlock with the SIM unlocking solution from the dev-team.
So: NEVER UPGRADE OR RESTORE YOUR IPHONE IN ITUNES
For more information, please visit the dev-team’s website at:
http://blog.iphone-dev.org/
For more information on the harmless totally-reversable hack, go to:
http://www.engadget.com/2008/12/10/video-android-rocking-on-the-htc-touch/
Get the hack and instructions directly from xda developers here:
http://forum.xda-developers.com/showthread.php?t=382265
You can customize the color of your T-Mobile G1, the Google Android based phone at Colorware Custom. This is the design I did with custom Metallic Paints for all colors except for the yellow which is a solid color called “Caution”:
http://www.colorwarepc.com/p-170-tmobile-g1.aspx?2081=candy_apple&2082=alpine&2083=caution&2084=midnight
BTW, the phones are unlocked which means that they can be used with any carrier and not only T-Mobile.
Your iPhone can not delete or forward SMS Messages? Yes it can! Use MySMS to do that!
Your iPhone can not forward a contact number to another one? Now it can! Just use MySMS
You want more options such as:
- landscape typing
- punctuation keys at the right side of typing window
- sms forwarding (even conversations)
- single / individual sms or conversation deletion
- character counter (to know if your text will be sent as one or multiple SMS messages)
- send contacts through sms
- Use message templates
- set password on app loading/launch
- Easy contact list search!
- disable auto correction in SMS typing (very useful if you are typing in other languages)
- skins (downloaded from the dev’s repo: isoftru.ru/repo/)
- set mySMS as the default SMS app
- Option to Tap return key twice to send message
For more information go to:
MySMS
and to see more screen shots and instructions on how to downlad the application from Cydia, go to:
http://iphonehelp.in/2008/11/13/mysms-ultimate-sms-app-for-the-iphone-3g-2x-via-cydia/
A good start is Google’s own documentation page:
http://code.google.com/android/documentation.html
Books are another good source for step-by-step development. One Andoid book that I read is:
ANDROID A PROGRAMMERS GUIDE (Paperback)
It guides you through installing Eclipse, Android SDK and all the different steps that lead you into developing a “Friend Finder” application.
Other books of interest that i found on Amazon include:
I love David Pogue… He gave us the iPhone Music Video when the iPhone first came out See it again here:
http://au.youtube.com/watch?v=vniMR6Ez9cE
Just watch
The founders of google missing around with the Android and writing their own applications for it. This includes an application that uses the hardware sensors on the phone. This is an invite to all geeks to hack their Android phones. It’s not like you needed an invite or anything… but it is a good thing to have nevertheless.
Fun Fact: Notice that one of them calls “Android Market” the “App Store”…! I guess one of them was using the iPhone too much
Get more information about this application and much more on Android’s Developer blog.
Also, visit Google Code Pages for Android.
Google Marketplace is where developers can easily publish and distribute their applications directly to users of Android-compatible phones including the T-Mobile G1.
The first ever Android was released in the USA in November but as in the previous post here on Mysecured.com, there were no people linening up outside of shops there!… The T-Mobile G1 was released in the UK yesterday (October 30th), with about the same results as the US launch… No one seems to be interested in it so far.
The week the same still holds even after reports show that the phone has been unlocked as shown in the video below:
Is this about to change here in Australia? Well, I’ve asked around and it seems like people were holding back on buying the US version of the G1 because they though it was using different 3G bands than the ones Australian telecoms use. But they thought that UK version will use the same frequencies as the Ausie carriers but so far there are no UK version T-Mobile G1s on sale on eBay UK.
Buyers here in Australia might be more interested in buying the UK version of the G1 but for now they have no choice but to wait for some of them to be either available on eBay. There is another choice however which is to buy an proprietary Android phone from an Australian technology company Kogan Technologies which will start selling their in house Chinese manufactured Android based phones that will go on sale on December 15 for $199 AUD.
For more details on that story go to:
The Age.
In other reports, people just don’t see that the G1 is either open source nor ground breaking. Wired Magazine notes that the phone has restricted use of VOIP technology as in this article:
http://blog.wired.com/gadgets/2008/09/g1-android-phon.html
As you might know, the iPhone 3G comes either on a contract which means that it is locked to the provider or Unlocked via iTunes on pre-paid plans or through a special arrangement with the service provider for a small fee. Locked phones however can be unlocked via hardware SIM attacments such as TurboSIM (discussed in detail in my paper) or other cheaper alternatives such as Universial SIM. What you might not know is that some sellers sell iPhones as if they are officially or leagally unlocked but in actuallity they are unlocked with alternative SIM attachments as shown in the pictures below:
SIM insertion slot showing extension wires
The actual Universal SIM attachment
To find out if the iPhone you are buying is unlockable by its carrier or not, ask the seller for the phone’s serial number and then visit:
http://support.apple.com/kb/HT1937
Buying a fake-unlocked iPhone could mean that your phone might be illegal to use in some countries because it violates usage laws. Also, it means a degration and sometimes the denial of service when it comes to data services and the quality of phone calls.
Pictures and Story from the Arabic source iPhone Islam. The only source for Arabisation of iPhone.
The people behind modmyi.com have an Android Forum but it doesn’t seem to have as much interest as the iPhone:
http://www.modmygphone.com/forums/index.php
I won’t judge the Android Platform yet though, I’ll give it six months
The LayerOne 2008 talk by David Hulton titled: Intercepting Mobile Phone/GSM
Visit the GSM Hakcing WIKI at:
http://wiki.thc.org/gsm
The USRP is available at: http://www.ettus.com
Learn more about the GNU RADIO project at: http://www.gnu.org/software/gnuradio
David is the Chairman of Toorcon
An interesting news article about the work of BT (formerly British Telecom), Glamorgan University, Australia’s Edith Cowan University and Sim Lifecycle Services where researchers recovered data from handsets from mobile phone recycling companies:
Mobile phones can never be totally wiped clean of data
To get more information on the research at Edith Cowan University and its upcoming conferences please visit SECAU Security Research Centre’s website:
Here are some published refereed journal and conference papers to give you an idea of what to expect for the Edith Cowan University conferences in December:
- Valli, C. and A. Jones (2008). A study of 2nd Hand Blackberry for sale - World class security foiled by humans. Proceedings of the 2008 World Congress in Computer Science, Computer Engineering, and Applied Computing - SAM 2008 - The 2008 International Conference on Security & Management., Las Vegas, USA.
- Al-Zarouni, M. (2007, 3rd December, 2007). Introduction to Mobile Phone Flasher Devices and Considerations for their Use in Mobile Phone Forensics. Paper presented at the The 5th Australian Digital Forensics Conference, Edith Cowan University, Mount Lawley Campus, Western Australia.
- Yap, L. F., & Jones, A. (2007, 3rd December, 2007). Profiling Through a Digital Mobile Device. Paper presented at the The 5th Australian Digital Forensics Conference, Edith Cowan University, Mount Lawley Campus, Western Australia.
- Yap, L. F., & Jones, A. (2007). Deleted Mobile Device’s Evidence Recovery:. Paper presented at the Media and Information-War Conference 2007, Kaula Lumpur, Malaysia.
You can register to attend Edith Cowan University’s conferences here:
http://conferences.scis.ecu.edu.au/
Hope to see you there
According to the article below, iPhone 2.2 beta which was provided to developers contained an Android-like Street View capability within the Google Maps App.
I Don’t know about you, but to me, it seemed like the street view feature was one of the most attractive features that Google used in selling the Android platform to consumers. I personally see a great potential in Android for app development but I still think that the iPhone will keep on keeping on especially after the dropped the NDA requirement for app developers
I’ve had my iPhone 3G with MobileMe for a while now but it didn’t seem like the push service from mobile me was working at all. This changed starting from yesterday though It is working now and I am happy with it so far.
These are some of the prototype Mobile Phones on show.
3D Navigation and Situational Awareness in a Mobile Phone:
Separatable mobile phone:
Projector Mobile Phone:
Ideally the emergency dial screen should allow ONLY EMERGENCY NUMBERS to be dialed out on a passcode locked phone. The iPhone however allows for ANY NUMBER to be dialed when it is passcode locked! This bug is not new, it was present in iPhone 2.0.2 as well!
Here is a video demonstrating the issue:
I discovered this bug in 2.0.2 just a couple of days before 2.1 came out. So, it was too late for me to give a heads up to Apple. So, I waited for 2.1 to come along to see if it was fixed. I did that today and found out that it wasn’t fixed.
This of course could be an Auatralia-only issue or even an Optus-only issue. Nevertheless it is a security issue with the iPhone and should be addressed.
UPDATE 18 Sep 08:
There is some debate on whether it is a bug or feature! Look at the following link for some more information on the issue:
http://www.macrumors.com/iphone/2008/09/17/iphone-2-1-emergency-call-anyone-bug-or-feature/
–
About the author:
Marwan Al-Zarouni CISSP is currently pursuing a Doctor of Information Technology award at Edith Cowan University. He is a member of the Security Research Centre at Edith Cowan University in Perth, Western Australia.
The features include: live rss feeds, live TV streaming channels, TV guide while watching TV, credit card and transport card functions on the phone, biometric fingerprint reader, 3+Mbps speed 3g data speeds… etc.
It has street view
The CSI Stick is a portable USB stick kind of device that can be connected to a mobile phone to conduct a copy of some sort of memory from the mobile phone device without the need for a computer to be connected to the mobile phone. The type of data collected form the mobile phone can be chosen through a slider switch. The device currently supports certain Motorola and Samsung phone models with more manufacturer support coming soon. The data collected by the device can then be interpreted via the use of Paraben’s Device Seizure or DS Lite. The cost is $199 USD.
For more information, please visit:
http://www.physorg.com/news139460365.html
and
http://computing.in.msn.com/safe/article.aspx?cp-documentid=1658902
or the device’s official website:
http://csistick.com/
WOLF claims to forensically extract the information from the internal memory of the iPhone without altering the device.
-
WOLF claims it can obtain the following information from devices:
The price, training and other information can be obtained from Sixth Legion LLC, a division of IDFS LLC on:
http://www.hex-dump.com/wolftest/index.html
or
http://sixthlegion.com.
PwnageTool 2.0 MACOSX version is released.
For more details, please visit:
rlslog.net
also see:
UPDATE: Don’t have a Mac? You can do it in Windows as well. For instractions, go here:
Step-by-Step Guide to Pwn first generation iPhone running firmware 2.0 using Windows
In a previous post http://www.mysecured.com/?p=202 I showed that your data is not wiped when you do a normal restore. So in this post I will show you some of the ways you can wipe your phone with some degree of certainty that the information on it is wiped.
If you want to wipe your iPhone before you sell it on eBay or give it back to Apple because the touch screen stopped working all of a sudden! Then here are the different ways you can wipe it:
- Jonathan Zdziarski’s method:
http://www.zdziarski.com/papers/wipe.html
It involves jailbreaking and command line access. It is best suited for people with jailbroken iPhones and are really paranoid and control freaks!
- Rich Mogull’s (securosis.com) method:
http://securosis.com/2008/05/20/formatting-an-iphone-to-wipe-data/Which is an easy to do 2 restores and 3 overwrites of the iPhone device’s user data area. Look at this video from CNET on youtube:
- BigBoss Wipe App Method:
http://sleepers.net/news/?p=174
This needs the iPhone to be jailbroken as well. It does a zero out wipe on the device, so it will require a restore afterwards.
The basic idea of all of the methods is to overwrite the data in the user area. Be it by overwriting it with music as in Mogull’s method or by using a wipe tool as with BigBoss or by overwriting it with zeros as in Jonathan’s method. I prefer the latter two methods as overwriting with music might leave some of the data intact (call me paranoid!). But on the other hand it could be the only option for people who do not want to jailbreak their iPhone or do not have the technical expertise to do so.
UPDATE (28 August 2008):
iPhone software 2.0 and above comes with an erase all feature that was not available in previous versions of the iPhone and therefore this feature can be used to completely wipe the iPhone. This can be done on the iPhone itself without needing to connect it to iTunes.
So, on the iPhone tap Settings -> General -> Reset and then select the “Erase All Content and Settings” option from the buttons shown. Users must note that under the 1.x iPhone software, invoking this setting erased the iPhone’s obvious data, but not did NOT PERFORM A ‘bit-by-bit’ WIPE. Under the 2.0 software however, you get a much more thorough wipe (bit-by-bit). which can take an hour or two to complete depending on the storage size of the iPhone being wiped.
As requested by Haitham. The Hard drive is not actually a hard drive. It is a Samsung 65 Nanometer NAND flash part number “K9HBG08U1M” the same one used earlier in the 8GB iPod Nano.
Data sheet can be found here:
http://www.datasheet4u.com/download.php?id=604473
More information and other links can be found here:
http://www.iphonefreak.com/2007/07/iphone-componen.html
Good news for iPhone forensics:
Paraben’s Device Seizure can get a variety of data depending on the operating system version as well as whether or not the phone has been unlocked (often called Jailbreaking). The following is a general guide to what data can be acquired from the different versions, however, our testing shows that different Jailbreaking methods unlock different portions of the phone (for instance, one method allowed Device Seizure to acquire most media files but did not allow access to phone records, contacts, or images uploaded to the phone):
Firmware 1.0, 1.0.1 and 1.0.2: Most logical data can be acquired from the phone Firmware 1.1.1, 1.1.2, 1.1.3, and 1.1.4: Only the /var/root/Media folder will be acquired Firmware Unlocked by a Jailbreaking Utility: Should
acquire most logical data depending on the unlocking software used. This is our first release for the Apple iPhone and we expect to see many more additions to this technology in the future. Keep your subscription
current to make sure you get all the new updates.
As quoted from Paraben. For more information please visit Paraben.
Instructions in Arabic can be found here:
http://www.iphoneislam.com/?p=62
Instructions and download in English can be found here:
If you get error “The application failed to initialize properly (0xc0000135)” you need to install .NET Framework 2.0. The executable unzips the GUI executable to “Program Files\ziphone”
Now you can unlock new iphones that are OTB 1.1.2 and 1.1.3 (bootloader version 4.6) with just software and no need for special microchips that go behind your SIM card. Here is a link to the guide:
http://iphone.unlock.no/OTB112unlock.htm
To see it in action, check out this youtube video:
Gear Live has a cool gallery of pictures of the new additions to the iPhone interface in its 1.1.3 release. The most impressive feature for me was the locate-me feature for the google maps application. Other features include dragging and dropping icons on the springboard and bookmarks icon on the springboard. Another much-needed feature is the multiple-people SMS capability.
To see some screen shots of the changes please follow the link below:
An Arabic keyboard has been developed for the iPhone. Now you can write Arabic SMS messages on you iphone
For more information and to update you iphone to support arabic typing please visit:
http://www.iphoneislam.com/?p=20
Also, make sure to bookmark their site for the latest islamic and Arabic related links and stories about the iPhone:
All you have to do is place a font file in the direcotry:
system/library/fonts/cache
It can be downloaded from here:
http://rapidshare.com/files/70430782/arialuni.ttf.html
And your safari browser will be able to ready arabic in the correct direction this time! As shown below
Credit for this one goes to Mishary.
Thanks
Finally, someone did something for the iPhone and the iPod touch that enables users to get full disk level access with read/write prevliges on the iPhone’s disk via AFP. The AppleTalk Filing Protocol makes the iPhone show up on the Mac desktop as a disk with full read/write access. For more from the “Core” click the link:
Also called “An Open Handset Alliance Project”. Here are some screen shots and a video preview of it from Gizmodo:
and video Preview:
The SDK can be downloaded from here:
It is finally here Now you can safely update your 1.0.2 to the new 1.1.1 and have it work like a charm Make sure you know what you’re doing though
Here are the detailed instructions:
http://www.tuaw.com/2007/10/29/instant-jailbreak-for-iphone-and-ipod-touch/
Remember, if you brick your iPhone, don’t blame us!
Metasploit for hacking iPhones:
http://www.pcworld.com/article/id,137741-c,iphone/article.html
Apple releases an update to Patch 10 flaws with the iPhone:
http://www.news.com/8301-10784_3-9786507-7.html?tag=nefd.blgs
The patch also Bricks unlocked iPhones
Read about it at Engadget then follow the easy instructions here: http://iphone.unlock.no/
Easy!
http://www.iphonealley.com/news/anysim-released-free-gui-iphone-unlock
Here are two guides to SIM unlock your iPhone for free:
This time it is by the iPhone Dev team iPhone is finally free from its AT&T ball and chain!
For more information and to download the needed files, head to Gizmodo. Instructions are not out yet. So, if you are one of those people that never RTFM, then download it and wing it!
Thanks again for EVERYONE on the Hackint0sh forums for all their efforts and all the good times we had with the iPhone
Otherwise, (if you’ve got money to burn) then go for the commercial unlock software found here:
http://www.iphonesimfree.com/cgi-bin/iphonesimfree/engine.pl?page=buy
Got questions? We got answers! Don’t be hatin’ start participatin’! Head to Hackint0sh.org!
Image above is from: http://blog.scifi.com/
There are so many iPhone clones that some online shops have a special category for them! Check out IPMart for example:
http://www.ipmart.com/main/browse.php?cat=1758&cat=2308
The De Say M888 shown below is the most impressive of them all but at USD 251.25 plus shipping fees won’t you rather buy an original 4GB iPhone at 299 USD including shipping?
According to WIRED Magazine:
http://www.wired.com/gadgets/wireless/news/2007/08/iphone_forensics
It quotes an expert from Paraben and Blackbag saying that it is a challange.
After the Super SIM and Turbo SIM methods, we have a hardware unlock method. Follow the links below for more details:
- http://www.reghardware.co.uk/2007/08/24/iphone_unlocked/ Contains the video
- http://iphonejtag.blogspot.com/ The instructions site
- http://www.tech.co.uk/gadgets/phones/mobile-phones/news/new-instructions-for-iphone-hardware-unlock?articleid=1348296214
- http://blogs.pcworld.com/staffblog/archives/005210.html
I would not try this at home… Super Sim simply works and it is CHEAP! Why bother with anything else, it is simply not worth the time or effort. Not to mention the risk of damaging the phone!
Whould you attempt this on your phone?
It is STILL NOT a software hack! This one revolves around something called TurboSIM. It supports all kinds of SIMs not just V1 SIMs. For more information go to:
http://www.iphonestalk.com/iphone-unlocked-for-all-use-any-sim-card-in-your-iphone/
and here is how to do it:
http://www.hackint0sh.org/forum/showthread.php?t=2619
or
http://www.jasonmadigan.com/2007/08/13/turbo-sim-iphone-unlock-confirmed-working/
Enjoy and this time, no need for SIM card programmer devices or Silvercards!
At least this is a SIM fabrication hack that works. For instructions, please follow one of the links below:
http://www.hackint0sh.org/forum/showthread.php?t=2215
or
http://www.myitablet.com/iphone-unlocked-for-european-use-061341.php
Enjoy your new unlocked iPhone Now, if only they can come up with the software hack before the 45 day deadline
Update: Rumor has it that the unlocked iPhones are already being sold in Hong Kong!
http://www.gearfuse.com/hong-kong-is-selling-fully-unlocked-iphones-now/
Take the poll on marwan.com:
http://www.marwan.com/2007/08/will-iphone-be-unlocked-within-45-days.php
I Predicted 45 days for the iPhone to work with other than AT&T! Have your say at marwan.com
Well, so far we have three choices. They are:
- M300 : Sold by IPMart
- M500 : Sold by SMS Technology Australia (to be released at the end of August)
- Cect Mobile Wrest watch: A Chinese prototype announce by CECT
Picture from mobilemag.com
Here are the details on How to do it (according to the hacker) :
1. Get the required hardware and softwares: (these are the ones I have used): An Infinity USB unlimited SIM reader/writer, a silvercard, SIM-EMU 6.01, and WoronScan 1.09
2. Get the IMSI, Ki of your carrier using WoronScan (I will call them IMSI-b, Ki-b)
3. Use SIM-EMU and create 2 files (1 Flash and 1 EEPROM) using the ICCID of the AT&T sim (ICCID-a), IMSI-b and Ki-b
4. Then use these 2 files to create a sim using the infinity usb unlimited reader/writer
5. Put this sim into a normal unlocked phone and make some calls/receive calls/data services
6. Then use SIM-EMU to change the IMSI of the original Flash file to IMSI of AT&T sim (IMSI-a)
7. Again write the silvercard with the new flash and eeprom files
8. Put this sim into the iphone
9. Activate using the Cingular method as descirbe in Hacktheiphone.com
This is not a true unlock. It is a hack that enables you to make calls with the iphone but does not enable you to recieve calls or use Telstra’s network to browse the Internet. At least not yet
Links:
http://www.smh.com.au/news/phones–pdas/iphone-hacked-for-australia/2007/07/30/1185647803146.html
For more information go to the MSN Video:
http://ninemsn.video.msn.com/v/en-au/v.htm?g=7386e8dd-6f00-4c67-931b-cea66739a91e&f=&fg=copy
Read the following articles for more details on the case:
I’ve been searching for iPhone unlocking sites and so far I found the sites below. I would like to emphasize that it is only a matter of time until a workaround can be found to use the iPhone with other providers other than AT&T. So, here are the two sites:
- The following blog post claims that it will send you an email with information about unlocking the iPhone once it is available for a small fee:
- The following company mentioned in this “the register” article claims that it is close to unlocking the iPhone and that once it is able to do that, it will provide iPhone users with a $50 software that will unlock their phones for them:
It is also worth noting that unlocking phones was ruled to be legal by the US copyright office last year.
If you don’t already have this one, please download and read this Computer Security Division NIST Interagency Report (IR). It was published in March 2007:
- http://csrc.nist.gov/publications/nistir/nistir-7387.pdf
- Zipped version of the pdf: http://csrc.nist.gov/publications/nistir/nistir-7387-pdf.zip
It is an update and complement to NIST Reports:
- Guidelines on Cell Phone Forensics (Special Publication 800-101):
- Cell Phone Forensic Tools: An Overview and Analysis (NISTIR 7250):
Here are two of them:
Duke University’s Wi-Fi network has a problem — the iPhone. Built-in Internet wireless adapters on AAPLthe new iPhone are crashing Wi-Fi access points by sending 18,000 data requests per second. Although other “smart phones” have similar capabilities, only the iPhone has shown to be able to overwhelm the campus’ network. Neither Duke, Cisco nor Apple know why it’s happening, but the school said if it occurs in the fall when students return, it would be a disaster. Source: http://money.cnn.com/news/newsfeeds/articles/newstex/IBD-0001-18205063.htm
The second problem is:
The iPhone’s web dialer is vaulnrable to exploits! to find out more, go to: http://www.tgdaily.com/content/view/32936/108/
For an interesting look at the cellphones of the future, watch this short video from cnet:
Where: Liverpool Library, U.K.
When: 5pm on 25th June 2007.
What: read the pdf brochure.
For more information, follow the link:
http://www.criminalsolicitor.net/forum/forum_posts.asp?TID=2450
I have received many visits to this site searching for “Nokia Hidden Codes”. So, I decided to include some more Here is a list of codes and some links to get some more codes:
*#06# Gets you the Serial Number/IMEI.
*#0000# Gives you the software version (e.g. V 5.27.0 / 28-06-04 / NHL-10) The NHL-10 is important and makes your life easier when you try to use flashers!
*#2820# Gives you the Bluetooth device address
xx# - Quick contact access (xx = location number, e.g. : 17#)
*#62209526# Gives you the MAC address of the WLAN adapter, this information is only available on the new models (S60 3rd edition) which have wireless connectivity.
To get some more codes (some of which can do damage to your phone and/or data residing on it, approach the codes on these sites with caution:
- N-Gage codes: http://www.gamefaqs.com/portable/ngage/code/915353.html
- In polish (Patryk, please translate!): http://www.eplay.yoyo.pl/viewpage.php?page_id=79
- From GSM-Hacks: http://www.gsmhacks.com/forums/mobile-technologies/1429-codes-s60.html
Again, please exercise caution.
Some of the topics discussed in the site might not be legal in some places! So, you’ve been warned. It has tips and tricks for mobile phones of all makes and models with a community supported hacks and forum discussions:
I know many people will look at this and go “We’ve seen this before… Cellular phone spying is not new” but I have to say that the technology is now more readily available than before. To understand what I am talking about, please read the following from zone labs:
- http://blog.zonelabs.com/blog/2007/04/they_can_hear_y.html
- http://blog.zonelabs.com/blog/2007/03/warning_this_ce_1.html
Also, visit this site:
Beware of cellphones left in your office, on your table at a coffee shop and in meetings. The FBI has been doing cell phone spying apparently:
http://www.youtube.com/watch?v=O61YfvPZGJs
On Demand Webcast “Compliance in the Mobile Enterprise” by James Wilcox CISSP. This session will include detailed information about:
- Security considerations for mobile devices, including laptops and handhelds
- An overview of key government regulations and how they apply to mobile deployments
- Strategies to achieve mobile compliance
You can watch the webcast by going here: http://viavid.net/dce.aspx?sid=00003DD7 and filling up your details.
Read what Prof. Rick Mislan said about the use of Phone Flasher Technologies and their role in the acquisition stage of mobile phone forensics and their use by students in digital forensics courses at Purdue University in the US.
A dual phone with GSM and VOIP and running Windows Mobile Smartphone Edition. Sounds like it is going to run Windows Mobile 6 by the time it’s going to be released. Find out more on:
http://www.engadgetmobile.com/2007/03/28/zyxel-launches-the-v660-smartphone/
Some interesting research topics from Purdue Uni. related to mobile phone forensics under Prof. Rick Mislan:
Click here to visit the site.
Otherwise, their main pages are found here:
http://www.cyberforensics.purdue.edu/DNN/
The project is looking for smart people (like you) to join in the fun. They are trying to build a cheap GSM scanner/receiver by using an ettus hardware board and the gnu-radio software. The reason the project got started is because GSM scanners cost a heap of money and that the builders of the site believe that the price is exaggerated and they could build a scanner/receiver for under a $1000 USD. This project’s aim is to help researchers learn more about GSM traffic or at least we hope so!
Need more info? Go here:
The project is looking for smart people (like you) to join in the fun. They are trying to build a cheap GSM scanner/receiver by using an ettus hardware board and the gnu-radio software. The reason the project got started is because GSM scanners cost a heap of money and that the builders of the site believe that the price is exaggerated and they could build a scanner/receiver for under a $1000 USD. This project’s aim is to help researchers learn more about GSM traffic or at least we hope so!
Need more info? Go here:
http://scratchpad.wikia.com/wiki/Gsm
