Gizmodo
Update: Video of project Pwnage after the jump. The beta 2.0 firmware that comes with the iPhone SDK has been modified to unlock the iPhone and run any application. Part of the Pwnage Project, the hacked firmware will allow you to do anything you want, including the installation of both official and unofficial apps, and even patches. We got the exclusive details directly from the DevTeam, including the fact that it is going to be extremely hard for Cupertino to close this new hole:
pwned firmware means it's custom [firmware], you can have it install anything you would ever want :-) Pwned works with some magic, it will be hard to close but nothing is impossible (from Apple) with a mindtwist. But first, we will enjoy :)
They told us that this is all part of their previous Pwnage project, which instead of trying to hack into the iPhone, directly patches the firmware itself to both unlock it, so you can use the iPhone with any carrier you want, and allow you to install any applications you want. You can see how it works here:
According to the Dev Team, the custom 2.0 firmware (technically, 1.2.0,) is now up and running without problems in many of their iPhones, running unsigned applications without a single problem. However, current Installer.app applications need to be changed: "they changed lots of the API, a lot. We will see how much has to be changed to the Toolchain [the previous development tool for iPhone independent developers] to still work after 2.0."
The best news, however, is this: "the hacked 1.2 firmware works with anything. AT&T and others, it's pwned. And Apple will not really be able to patch it this time... somehow :-)"
I'm flabbergasted. As Han Solo would say, "that's one in a million, kid!" Once again.
The cool thing here is that Dev Team told us that this is 1) a true unlock and 2) Apple will have a very difficult time closing this hole. That's the news, not just jailbreak—in fact, it's not even jailbreak in the classic sense. It's built-in the hacked firmware, which allows for installation of any application, unsigned or "Apple Approved"
In other words, true carrier and applications independence. And for a long time.
Note: as you can see, the Dev Team is still working hard in making the iPhone a completely open, carrier-independent platform. If you want to help them, please send a Paypal donation to iphone.devteam@gmail.com or join them at hackint0sh.org.
Comments
jesus, that was fast
Amen!
Just when I thought that we wouldn't have anymore iphone news until june, i awake to find this story.
I had to pinch myself to make sure I wasn't dreaming.
now this time don't release the code until AFTER the thing comes out!
So when will this be released? Maybe it will force Apple to release the official release a bit earlier?
Best image possible for this story? Yes.
Sweet, this sinches it. I'm finally going to get an iPhone. I'm tired of my stuff only half syncing with my MBP. And I've been apprehensive about getting the phone without a definitive way to unlock with full features.
I don't need a $500 paper weight after all, and I'm not buying out of my TMo contract. I hate TMo, but I'm not about to give them $400 to buy out my contract. Eff them that's why.
Why would one go from a TMo to ATT? That doesn't make ANY sense, not if you actually want coverage :-)
Wow that was quick... maybe JAVA will have a chance on the iPhone after all!
Let the iPhone virus era begin!
@RainyDayInterns:
TMo coverage north of atlanta is horrible. I had to switch to AT&T to be able to use my phone in my house.
Stop the hyperbole. You can't unlock it to work with any carrier you want. IT WON'T WORK WITH VERIZON!!
@JacksSenseOfRejection: Why don't you just goto AT&T buy a referb iPhone and then use ZiPhone and walah, you can still use Tmob even though I think they are a joke. My friend just did it recently and he was up and running within 2 minutes.
Anything? Anything at all? Dual chips for double-coverage roaming?
THAT I gotta see..
-W
Wouldn't it have to open to a "jailbreak"? So Dev teams can dev. Couldn't they easily lock it down with the a 1.2.1 public release in June.
For three months developers develop apps. Then they are offered the opportunity to sell apps on iTunes. Making iTunes the only way to get them on the public 1.2.1 version?
why not just wait to release this news after 2.0 comes out officially? Seriously.
I normally hate to use this term, but hacking the firmware is the most literal example of "thinking outside the box" I've seen in a while.
@RainyDayInterns:
TMo doesn't have a 3G network worth talking about.
Isn't this kind of like Ralph Nader running for president.
@killerstache:
that's what she said =(
@dagamer34:not to mention they drop calls without mercy.
@s017jrs: c'mon kid. You really believe an in-house team of rich and professional programmers can't find what a group of renegade hackers can? You really believe they're running around in Cupertino with s.jobs sitting around reading hakint0sh.org waiting for the dev teams to hack his precious phone and show him what's wrong?
Really?
technically, its impossible for apple to patch your phone. You have people still using 1.0.2 firmware. Apple can't do shit about it. Apple didnt "brick" anyone's phones. They just release 1.1 and waited for morons to do it themselves, for no reason. It'll be that same with 1.2. They'll release 1.2.1 and wait for people to upgrade for no reason. And people WILL do it. Why? Who knows........
Apple just needs to give the eff up.
i believe that i am reading this correctly and this firmware will be similar to the custom PSP firmwares. you obviously wouldn't update it to an apple firmware just like you don't update to another firmware now when your ipod/iphone is jailbroken (unless you are willing to jailbreak again)
That picture cracks me up every time.
Is it possible to install the beta firmware from the SDK to the iPhone without any magic or is it hidden somewhere?
Funny i work for TMo and my wireless service is from verizon. and as of now i dont see a reason to switch. its funny because this company is really and i mean reeeaaaaalllllllly slow on updating to that 3G network, and with talks on the new spectrum (4G) i may never want to leave verizon, if TMo is that far behind in keeping up with the rest of the bunch. although my bill is pretty high. thats the only downpoint.
@izim1:
I think s017jrs point is EVERYONE ELSE BRAINPOWER > ANY COMPANY BRAINPOWER.
That is how hacking works. There's always someone somewhere capable of doing what "needs" to be done.
You, as a company, can't compete with everyone else.., it doesn't matter how talented your team is.
And besides that, its harder to dig for a treasure (fix) without a map (sourcecode).
I think you misunderstood what a toolchain is - It's not the previous development tool, it's the tools used to create a product ;)
[en.wikipedia.org]
Hopefully this shows the dev community that while Apple can't legally open the door to unlock phones because of contract restrictions, they really don't care if people use their SDK to unlock. I mean, they released the whole thing to the public... do you really think they expected the dev community to not be able to get in?
They get to open up the phone to official apps for those of us who are fine with a regular iPhone and AT&T and they made it easier, while still honoring their contract, for developers to open this thing up and unlock it.
Can we stop bashing Apple for not offering unlocked phones now?
@izim1: haha they go ahead unlock it, knowing that their phone won't work, simply so that they can bitch about how Apple won't give them an unlocked phone.
I feel bad for any person who unlocks or hacks their iPhone, should it need service. FIRST thing that any Apple rep asks is "Can I have your phone number please?" and they match it against AT&T's system for verification. So...what happens when your number isn't there? Bummer...because I have AT&T and when I had problems, it was no issue to get a new phone shipped out ASAP.
@TallDudeFromBrazil: i think you're missing the point. in-house "hackers" have full access to everything they need AND hacking it is their job. renegade hackers DONT and usually have other things going on in their lives (like real jobs). if THEY could find the treasure with not only NO MAP but also blindfolded. you really believe that the paid team that Apple has cant do it WITH a map, shovels, and a metal detector?
@daath: "I think you misunderstood what a toolchain is - It's not the previous development tool, it's the tools used to create a product ;)"
.................................................
errrrrrr? isnt that the same thing? or was the "previous development tool" NOT a tool to create a product?....
Well that was nice of them to break it while it's in beta. This way it'll be patched up by the time it's fully released (the time when it could actually make a difference). Well done.
Are these guys on Apple's payroll?
@daath: No, I don't think I "misunderstood" what toolchain is. I think you have done just that, though.
@workingonyourinvoice: Read the article. Apple is going to have an extremely difficult time "patching" this one because there's nothing really to patch, I'm afraid. It's their Apple's pwned firmware.
Can I totally wipe it and install OpenSuSE?
@dagamer34: Which doesn't matter because the current generation of iPhone doesn't have 3G support. T-Mobile's in the process of rolling out 3G anyway; I'm sure that by the time iPhone has 3G support, T-Mobile will offer it.
Anyway this is excellent news. I finally have a reason to upgrade from 1.1.1.
So can we install this on an already unlocked and jailbroken iPhone?
@Jesus Diaz: Well even if they'll have an extremely tough time, they've got a hell of a head start.
Here's hoping that they "fix" the iPod Touch just as fast - I could stomach paying $20 for a glorified patch once, but I'd cut off my hands before I paid it AGAIN.
Everyone is so happy about this, but soon there will be a whole new iphone that will have all new issues. I don't know if this will ever end. I am waiting for the new one (because of contract reasons/3g/etc) to come out and plan on buying it then. Then they will have to start all over again with the hacks, firmware, etc. I applaud all of the help with hackint0sh and so forth but at the same time I do agree with drbles... if you do have a problem with your hacked phone and need service good luck!
I do like my risks... so if you are using the hacks ladies and germs, please donate or these people might not be around to help out!
@RoCKSTaH53: They very well could have "legally" opened the door for unlocked phones -- but they were greedy and wanted that fat AT&T kickback. An article I read on Maximum PC's website stated that they make 75% of their revenue on each iPhone from the contract, not from the initial sale. In fact, the iPhone is still not out in several countries that have mandatory unlocked phones, because Apple is still trying to find ways to skirt their laws so they can get their kickbacks from providers in those countries, too.
Well, without the AT&T collaboration, Visual Voicemail would not be possible. I don't own an iPhone, but my friend does, and that is one of my favorite parts of it. I hate having to call into my voicemail, to listen to messages from people i'd rather hear later just to get to the important messages.
Either way, this is good news for people who don't care about that.
@Grifter: why would the new iphone be so much more difficult to hack? Do you really think they're going to make a completely new OS for a product with just a few tweaks in hardware?
I think the new iPhone is going to look and function exactly like the current one, except it will have a faster connection, possibly GPS, and maybe a higher megapixel camera (no doubt higher capacity as well), but none of those are really "revolutionary" ;-)
also, I could be totally wrong about this, but it looks like they're planning the firmware for concurrent release with the new iphone.
A word of advice to the Cupertino bois: give up because you are just continuously losing.. I can't keep up with the losing streaks.... is this an election between Obama and Clinton?
Just give up and open up the damn device for all will be forever happy with Apple. It might actually increase sale numbers....so consider it a good advice.
Screw AT&T execs
Dear Apple,
Booo-yahhhhhh.
Sincerely,
Dev Team
Dammit, I have to change my pants again.
Any word on whether the new firmware contains an updated Bluetooth Stack (A2DP)? Or is this something that Apple would not include until the official release in June?
What if this was the plan all along? Remember before apple took a neutral stance on hacks to their phone? they said something along the lines of " feel free to tinker, but we are not responsible if you break it" We were all in some agreement that the idea behind the statement was to make ATT happy since they are in business. We all know any phone apple sells is $ for them. This just brings the iphone owners one step closer bliss.
@Grifter: what's the point in showering when you're going to get dirty again??think twice...
this is awesome full respect to the dev team!!!!keep up the good work
@bspence: It's "voila!" you lummox! :P
@bspence: It will work with any carrier that uses a compatible connection.
@Jesus Diaz: couldn't apple just institute some sort of callback like wga into the iphone?
Holy snap that is beastly.
An unlocked iphone software before it exists.
sick.
SDK what?
@newgalactic: Turns out that the 1.2 Firmware doesn't contain any of the Bluetooty, WiFi, Radio functions included in the actual production firmware. So, nothing to see here.
lol holy crap that took forever to turn on... are iphones really that slow? glad i went with something else...