iPhone Atlas

Blackra1n

(Credit: GeoHot)

iPhone OS hacker, GeoHot, released an updated version of Blackra1n earlier this week, a jailbreak utility for iPhone OS 3.1.2 and iPhone baseband 05.11.07 that now includes a carrier unlock that lets you use the iPhone on any GSM carrier.

We covered the initial release of Blackra1n that was Windows only, but now a Mac version of Blackra1n is available. Mac users can use Blackra1n to jailbreak or unlock all iPhone and iPod Touch models regardless of its hardware generation.

Using the application is simple. You just connect the iPhone or iPod Touch using the standard USB sync cable to a computer and follow iClarified's tutorials on how to jailbreak and unlock your iPhone 3G, 3GS using BlackSn0w for Windows or Mac.

Blackra1n new recovery mode image is a cropped version of this picture.

(Credit: GeoHot)

Note: By jailbreaking or unlocking an iPhone or iPod Touch, you may be violating your terms of service agreement and voiding your warranty. CNET does not recommend jailbreaking or unlocking; proceed at your own risk.

Blacksn0w

(Credit: GeoHot)

iPhone OS hacker GeoHot released Blackra1n RC3 Tuesday, an updated jailbreak and unlock utility for the Apple iPhone 3GS and iPod Touch.

This version provides true carrier unlocking for iPhone OS 3.1.2 and baseband 05.11.07 by taking advantage of at+xemm crash exploit discovered by ih8sn0w.

The Blackra1n jailbreak process installs a new app--called Sn0w--onto an iPhone. It unlocks your iPhone, making it usable on any GSM carrier network. More information about the jailbreak can be found on GeoHot's blog.

Please note that by jailbreaking an iPhone, you may be violating your terms of service and voiding your warranty. CNET does not recommend jailbreaking; proceed at your own risk.

iPhone OS hacker GeoHot has announced the successful creation of an iPhone unlock for the iPhone OS 3.1.2 baseband. The new app called, Blacksn0w, will allow iPhone users to use their phone on non-Apple sanctioned carriers.

You'll have to wait a bit though, since the application will not be released by GeoHot until November 4th, 2009.

GeoHot, "To clarify, I have arbitrary code running on the baseband. "

(Credit: GeoHot)

GeoHot also posted this YouTube video demonstrating the exploit:

iPhone OS hacker GeoHot released Blackra1n RC2 today, an updated jailbreak utility for the Apple iPhone 3GS and iPod Touch.

BlackRa1n

(Credit: GeoHot)

This version provides a tethering jailbreak for the new iPhone 3GS with the updated bootrom from Apple. According to GeoHot's blog, these new features are included:

• Fixed 3G issues
• Tethered jailbreak for 3.1 OOTB ipt 8GB and new 3GS units
• Fixed Icy issues
• Both Windows and Mac

He also points out that "if you used RC1 with success," then there is no need to rerun Blackra1n RC2 on your iPhone or iPod Touch.

Updated October 26, 2009 at 6:05 a.m. PT: shawncpotter, one of our readers', asked for clarification on what "Tethered jailbreak for 3.1 OOTB ipt 8GB and new 3GS units" means. If own a specific late model iPhone 3GS and it loses power or needs to be rebooted for any reason, you must first tether it to a computer and use Blackra1n to turn it back on again.

Apple has started to release new iPhone 3GS handsets with an updated bootrom and we reported that it rendered those iPhones jailbreak proof. However, this isn't true, Eric McDonald, an iPhone Dev-Team member, said in a Wired interview released last week.

MacDonald said, "It's not going to be impossible to jailbreak even if the exploit we used is gone."

iBoot-359.3.2

(Credit: Mathieulh via iClarified)

The existing tools used for jailbreaking will work with the newly updated iPhone 3GS handsets. The only problem is that Apple has patched the "24kpwn" exploit used to jailbreak previous models. The result is that the 3GS can be jailbroken, but it will only boot after being turned off while tethered to a computer. What this means is that if you are away from your computer and your iPhone runs out of power, you will only be able to turn it back on by plugging it into your computer, not the included AC adapter. Worse still is that if your iPhone crashes and you need to reboot it, you had better have your computer handy. If you don't have one, your iPhone will become a handy paperweight until you do.

We suspect that these circumstances are the same for the current third-generation iPod Touch. However, the second-generation iPod Touch suffered the same fate and eventually the Dev-Team released a fix that lifted the tethering restrictions. We think that eventually a similar fix will be released for Apple's latest iPhone and iPod Touch.

The caveat of having to tether your iPhone 3GS (or iPod Touch) to turn it on or run the risk of it turning into a paperweight after a crash or reboot might not make jailbreaking the updated devices worthwhile for many people.

The iPhone Dev-Team has released PwnageTool 3.1.4, an update to its Mac hacking utility for iPhones and iPods. The group also confirms rumors that Apple may be finding ways to block future jailbreaks.

This version of the PwnageTool was created to specifically unlock iPhone OS 3.1.2, but all generations of the iPhone are supported by this release as well as the first and second generations of the iPod Touch. (Second-generation devices must have already been jailbroken for this application to work.) Unfortunately, third-generation iPod Touch users are completely left out--no jailbreak for you with this utility.

According to the Dev-Team, iPhone 3GS users can jailbreak and unlock iPhone OS 3.1.2 using PwanageTool, but there is a catch: it will only keep the unlock for the cellular baseband intact if you have been jailbreaking and unlocking your iPhone 3GS using custom IPSW files beginning with iPhone OS 3.0 or earlier. (If that describes your situation, all you have to do is install ultrasn0w via Cydia after you perform a restore using one of the no-baseband-alterations custom IPSW's you created previously.)

In closely related news, iClarified also reports that Apple began shipping last week a new Bootrom, iBoot-359.3.2, which is not vulnerable to the 24kpwn exploit. In other words, newly purchased iPhone 3GS units may be protected against jailbreaks.

iBoot-359.3.2

(Credit: Mathieulh via iClarified)

Finally, the Dev-Team recommends that 3GS users get and save their ECID hashes for iPhone OS 3.1.2 now, since this could be an important component of future jailbreaking efforts. If you've installed Blackra1n using our tutorial and are encountering problems with mobilesubstrate, winterboard, diskaid, or ifunbox, the Dev-Team has some custom IPSWs that can help. They also warn Blackra1n iPhone 3G and 3GS users that if the stock 3.1.2 firmware is used, there is no short-term unlocking solution. The Dev-Team is still working on hacks for the latest iPhone basebands.

iPhone OS hacker, GeoHot, released Blackra1n this weekend, a new jailbreak utility for iPhone OS 3.1.2.

The new Windows-only utility follows on the heels of Purplera1n and you can download it now. Windows users can use it to jailbreak iPhone OS 3.1.2 on all iPhone and iPod Touch models regardless of their hardware generation. Using the application is simple. You just plug in your iPhone or iPod Touch using the standard USB sync cable and follow the instructions below.

Difficulty level:
Easy

What you need:
>PC running Windows XP or Vista
>Download Blackra1n using from blackra1n.com

Notes:

• BlackRa1n does not unlock your iPhone so that it can be used with another carrier.
• If you have already updated to 3.1 or higher and you did not use PwangeTool to upgrade from an earlier iPhone OS version, then you will not be able to unlock your iPhone until PwangeTool is updated.
• iPod Touch third-generation users take heed--Blackra1n only supports a tethered jailbreak. If your battery is depleted after the hack, then you will have to reconnect your iPod Touch to a computer and use the Blackra1n utility to reboot it.

Updated on October 12, 2008 at 7:29 a.m. PDT: Comments from mohabitar and eisenhower1803 indicate that installing Cydia and Icy at the same time is not recommended.

Standard disclaimers apply. Please read your contract terms of service carefully before proceeding to ensure that you are not breaking your iPhone carrier agreement or warranty. Also, while these methods have worked for most people, we cannot guarantee that they will work for you, and you must make these modifications at your own risk. If you do not feel comfortable making these modifications to your phone, we urge you not to try to make them.

Jailbreak evidence for Blackra1n

(Credit: GeoHot)

1. Launch iTunes and check to ensure that you are running version 9.0.1. If you are not, then update your iTunes before proceeding and reboot your PC.

2. Install Blackra1n and reboot your PC.

3. If you haven't already plugged your iPhone or iPod Touch into your computer, connect it now with the USB sync cable.

5. Your iPhone or iPod Touch will go into recovery mode. A picture of GeoHot will replace the standard recovery mode image on your device.

Blackra1n new recovery mode image is a cropped version of this picture.

(Credit: GeoHot)

6. Blackra1n will execute and perform the jailbreak on your device and the device will be rebooted.

7. An opportunity will present itself for you to make a donation to GeoHot.

8. Once your device has rebooted, a new icon--Blackra1n--will appear on the Springboard. You now need to confirm that your device can connect to the Internet.

Blackra1n app icon

9. Launch Blackra1n on your device.

Blackra1n iPhone App

10. You can now choose to install one or more of your favorite installer apps: Cydia, Rock, or Icy. (Note: my personal favorites are Cydia and Icy.) Blackra1n will download and install your selections, the Springboard will be restarted, and your installed installer app icons will appear.

11. After you have confirmed that your selected installer app is working, you can then optionally uninstall Blackra1n by launching it and tapping the button labeled "Uninstall blackra1n."

12. Reboot your device my pressing and holding sleep/wake and home until the Apple logo appears. You're now done!

Tell us about your experiences with this jailbreak in the comments.

The cat and mouse game continues between Apple and the Dev Team, a group of guys who are passionate about freeing Apple handheld devices from the company's short leash. The Dev Team has been jailbreaking new Apple firmware for years, and it just did so again--though this time around it seems Apple is still taking the decisive lead.

The team announced Friday the availability of PwnageTool 3.13, which allows for jailbreaking and unlocking the iPhone 3GS running the latest firmware, version 3.1. Currently only a Mac version of the tool is available, but the Windows version will be out soon. (Keep in mind, however, that you download and use the PwnageTool at your own risk.)

A jailbroken iPhone can do a lot more than what Apple wants it to do.

(Credit: Screenshot by Dong Ngo/CNET)

The tool creates a custom firmware from the version 3.1 firmware released by Apple. To install it, you put the phone into recovery mode (turn it off, then plug it in while holding down the Home button) and use iTunes to restore the phone with the custom firmware (hold down the Option key while clicking on the Restore button).

The custom firmware, apart from jailbreaking, will not upgrade the baseband--the chip that connects the phone to a service provider--and therefore still allows the phone to be unlocked.

But there's a catch here. The tool only works with the iPhone 3GS that has been jailbroken with the firmware version 3.0 or 3.0.1. This means if you buy a new iPhone 3GS that already has version 3.1 on it or you have updated to version 3.1 using iTunes, there's still no way to have your phone jailbroken. There's even a rumor that there might never be one, unless a new exploit is found.

If this is true, it seems Apple has finally been able to gain significant ground in stopping the practice it claims could pose a threat to national security. And for thousands, if not millions of iPhone 3GS users who rely on jailbreaking and unlocking to use their phones with the service of their choice, this is sad news.