Last week, Team Pangu unveiled iOS 10.3.1 jailbreak at Janus Mobile Security Conference. A few Chinese sources are now reporting that Team Pangu has sold Pangu103 jailbreak to Apple.
Let’s find out what’s going on and what isn’t.
Table of Contents
Pangu Sells Jailbreak Exploit for $1.25 Million
According to many Chinese users, Pangu team has sold the iOS 10.3-10.3.1 jailbreak exploit to Apple for a whopping 1.25 million US dollars. This security vulnerability will then be closed by Apple in the next beta release of iOS 10.3.2.
For the uninitiated, 0-day exploits can fetch hackers hundreds of thousands of dollars. The amount can even go up to millions depending on how powerful the exploit is.
This new development is spreading like wildfire in the jailbreak community. Luca Todesco, the developer of Yalu jailbreak, has a unique take on the whole Pangu fiasco.
If Apple was buying jailbreaks at 1.25m$ I’d be a very rich man
— qwertyoruiop (@qwertyoruiopz) May 1, 2017
If this is true, Team Pangu may never release the iOS 10.3-10.3.1 jailbreak. Some users also suggested that Pangu should accept the bounty and then “leak” the jailbreak secretly.
This, of course, would be illegal and result in a breach of contract.
However, a few things do seem fishy here. Apple’s Bug Bounty Program pays a bounty of $200,000 for iBoot security vulnerabilities. 1.25 million USD is a rather high amount and is inconsistent with thier Bug Bounty Program.
It is also possible that Apple may have paid them handsomely because their exploit was extremely powerful or they showcased a collection of exploits.
How it all Started
A “trusted” Twitter account uploaded a video of Pangu103 jailbreak running on iPhone 7. The same Twitter handle also posted that Pangu jailbreak will arrive within a week.
The “trusted” Twitter account has now been removed. Here’s the video that was uploaded on Youtube.
— Yalu Jailbreak (@Yalujb) April 26, 2017
The account was created in 2017 and simply posted a few pictures from Janus Conference. This led to many people believing that this guy visited the Conference himself.
Consequently, any further reports regarding the release of the tool were also considered legitimate.
What next for the Jailbreak Community?
It seems as if Team Pangu is no longer interested in developing iOS jailbreak. They may have moved on to information security research and penetration testing.
With Luca quitting the jailbreak scene, not many hackers are willing to work on a jailbreak.
Team Pangu is our last hope of getting a 10.3 jailbreak. Other popular jailbreak teams such as TaiG and Evad3rs have either disbanded or are no longer active in the jailbreak scene.
I recommend all users to wait and stay on their current firmware. Unless something concrete surfaces, stay on the lowest firmware possible.
As always, don’t forget to follow us on Facebook and Twitter for the latest updates.