Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Mobile & Wireless

Appeals Court Sides With Corellium in Apple Copyright Case

US appeals court sides with Corellium in the copyright infringement lawsuit filed by Apple against the company over its security research tools.

A US appeals court on Monday sided with Corellium in the copyright infringement lawsuit filed by Apple against the company over its security research tools.

The lawsuit was initially filed by Apple against Corellium in 2019, when the tech giant accused the Florida-based virtualization company of copyright infringement related to a product that replicates the iOS operating system.

Corellium provides a virtual iPhone — including the graphical interface and the underlying code for the iOS operating system — that is advertised as a tool designed for finding vulnerabilities and other types of bugs, as well as for testing mobile applications on different versions of devices and operating systems. 

Apple’s lawsuit has focused on copyright, alleging that Corellium doesn’t have permission or a license to use its products. 

“Far from assisting in fixing vulnerabilities, Corellium encourages its users to sell any discovered information on the open market to the highest bidder,” Apple said in its initial complaint.

Corellium responded and later accused Apple of suing it after a failed acquisition attempt. A few months later, Apple filed an amended complaint, increasing the focus on the use of Corellium’s tool for jailbreaking. 

In December 2020, a federal judge dismissed Apple’s copyright infringement lawsuit against Corellium. 

Advertisement. Scroll to continue reading.

However, that was not the end of it. In August 2021, just days after it was reported that Apple had settled a lawsuit against Corellium, the tech giant filed an appeal

There are three counts in the copyright lawsuit: direct infringement of iOS, direct infringement of icons and wallpapers, and contributory infringement. 

The US Court of Appeals for the Eleventh Circuit said on Monday that a lower court should reconsider claims related to contributory infringement, as well as icons and wallpapers, but sided with Corellium on the iOS copyright allegations, arguing that the security firm is “shielded by the fair use doctrine”. 

“First, Corellium’s virtualization software is transformative — it furthers scientific progress by allowing security research into important operating systems. Second, iOS is functional operating software that falls outside copyright’s core. Third, Corellium didn’t overhelp itself to Apple’s software. And fourth, Corellium’s product does not substantially harm the market for iOS or iOS derivatives — so Apple’s own incentive to innovate remains strong,” judges ruled.

Related: Companies Increasingly Hit With Data Breach Lawsuits: Law Firm

Related: Google Wins Lawsuit Against Glupteba Botnet Operators

Related: Rackspace Hit With Lawsuits Over Ransomware Attack

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...

Mobile & Wireless

Apple rolled out iOS 16.3 and macOS Ventura 13.2 to cover serious security vulnerabilities.

Mobile & Wireless

Critical security flaws expose Samsung’s Exynos modems to “Internet-to-baseband remote code execution” attacks with no user interaction. Project Zero says an attacker only needs...

Mobile & Wireless

Technical details published for an Arm Mali GPU flaw leading to arbitrary kernel code execution and root on Pixel 6.

Mobile & Wireless

Two vulnerabilities in Samsung’s Galaxy Store that could be exploited to install applications or execute JavaScript code by launching a web page.

Mobile & Wireless

The February 2023 security updates for Android patch 40 vulnerabilities, including multiple high-severity escalation of privilege bugs.

Mobile & Wireless

Apple’s iOS 12.5.7 update patches CVE-2022-42856, an actively exploited vulnerability, in old iPhones and iPads.

Cybercrime

A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.