Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Compliance

Apple Targets Jailbreaking in New Complaint Against Corellium

Apple has filed an amended complaint in the lawsuit against Corellium and the virtualization company has responded by claiming that the tech giant is using the lawsuit to crack down on jailbreaking.

Apple has filed an amended complaint in the lawsuit against Corellium and the virtualization company has responded by claiming that the tech giant is using the lawsuit to crack down on jailbreaking.

Corellium provides a virtual iPhone that can be used to find vulnerabilities and test the functionality of mobile apps on different versions of the iPhone and iOS. Apple has accused the company of copyright infringement, stating that Corellium was not authorized to copy its products.

Apple’s initial complaint only mentioned jailbreaking, but the new complaint includes several paragraphs focusing on jailbreaking.

Apple has shared examples of instances where Corellium advertised its platform as an alternative to purchasing jailbroken iPhones, and where the company openly admitted that its solutions helped developers create a jailbreak dubbed “unc0ver.”

“Corellium has admitted not only that its product is designed to circumvent technological protection measures Apple puts in place to prevent access to and infringement of its copyrighted works in iOS, but that it has aided and abetted the creation and trafficking of other software that is also designed to circumvent those same technological measures,” Apple said.

In a statement published on its website in response to Apple’s new complaint, Corellium warned that the tech giant’s claims should raise concerns.

“Apple is asserting that anyone who provides a tool that allows other people to jailbreak, and anyone who assists in creating such a tool, is violating the DMCA. Apple underscores this position by calling the unc0ver jailbreak tool ‘unlawful’ and stating that it is ‘designed to circumvent [the] same technological measures’ as Corellium,” explained Corellium CEO Amanda Gorton.

“Apple is using this case as a trial balloon in a new angle to crack down on jailbreaking. Apple has made it clear that it does not intend to limit this attack to Corellium: it is seeking to set a precedent to eliminate public jailbreaks,” Gorton said.

Advertisement. Scroll to continue reading.

Gorton noted that jailbreaking not only helps researchers and developers, but also Apple, which has benefited from the work of the jailbreak community.

“Many of the features of iOS originally appeared as jailbreak tweaks and were copied by Apple, including dark mode, control center, and context menus. In addition, jailbreak creators regularly contribute to the security of iOS. The developer behind the unc0ver jailbreak was acknowledged and credited by Apple for assisting with a security vulnerability in the iOS kernel – a vulnerability he discovered while using Corellium,” she added.

The response filed by Corellium to Apple’s lawsuit was initially heavily redacted, but the company published an unredacted version in mid-November. The unredacted document revealed that Corellium believes Apple filed a lawsuit in response to a failed acquisition attempt.

“[This] lawsuit is not driven by Apple’s genuine belief that Corellium infringes its copyrights, but rather by its frustration at not being able to make Corellium’s technology its own,” Corellium said.

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join us as we delve into the transformative potential of AI, predictive ChatGPT-like tools and automation to detect and defend against cyberattacks.

Register

As cybersecurity breaches and incidents escalate, the cyber insurance ecosystem is undergoing rapid and transformational change.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...

CISO Conversations

Joanna Burkey, CISO at HP, and Kevin Cross, CISO at Dell, discuss how the role of a CISO is different for a multinational corporation...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.

CISO Strategy

Security professionals understand the need for resilience in their company’s security posture, but often fail to build their own psychological resilience to stress.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...

Cybersecurity Funding

2022 Cybersecurity Year in Review: Top news headlines and trends that impacted the security ecosystem

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...