Hello, welcome to the Tuesday, August 20th, 2019 edition of the Sanct Storm Center's Stormcast.

My name is Johannes Ulrich.

And today I'm recording from Jacksonville, Florida.

In April this year, Apple released iOS 12.3 and with it fixed one of the last known jailbreak vulnerabilities.

iOS 12.3 has, as far as I know, not been jailbroken and the jailbreaking community really

was a little bit sort of out of ideas at this point. Well, leave it up

to Apple to give jailbreakers new hope. Turns out in the very latest release of iOS 12.4,

the old vulnerability that was used in iOS 12.2 and earlier was reintroduced.

To take advantage of this re-released vulnerability, the Uncover jailbreak was updated today to version 353.

With it, it should be possible to jailbreak the latest version of iOS on all current devices.

Of course, this comes with the usual warning that by jailbreaking your device, you're also

disabling a lot of the security protections.

On the other hand, having a jail breakable device, and there isn't really much you can do about this at this

point, will allow an attacker with physical access to your device to jail break it and gain

full access to the device.

And one of the new features being rolled out with this month's Windows update was that

Shaw 2 signatures are now mandatory for all Windows updates.

Now Windows 8 and later are fully okay with that, but turns out that Windows 7 and Windows Server 2008 R2 apparently have

some issues with it, and it may actually be more related to antivirus solutions on these

particular operating systems, not so much the operating system itself.

Microsoft has released patches, so Windows 7 SP1 and

Windows Server 2008 R2 are able to accept SHA-2 solutions. Now up to now what Microsoft had

...