iPhone Jailbreak Scam Puts Ads on Your Phone

News
By
published

No Checkm8 jailbreak, just click fraud

An iPhone X being used with a MacBook Pro in the background.
An iPhone X being used with a MacBook Pro in the background. (Image credit: Chinnapong/Shutterstock)

Hey, would-be iPhone jailbreakers! Be careful where you get your jailbreak tools. 

Cisco Talos researchers reported yesterday (Oct. 15) that there's a fake website pretending to be a download site for checkra1n, a forthcoming jailbreak tool based on the checkm8 iPhone hack disclosed in late September that works on the iPhone 4s through the iPhone X

The real checkra1n site is at checkra1n.com. The fake is at checkrain[.]com, and if you were to "install" its "software," you'd really just be letting a crook commit advertising click-fraud on your iPhone. To avoid falling for this trap, wait until you hear that checkra1n is ready for download.

MORE:  10 Pros and Cons of Jailbreaking Your iPhone or iPad

Checkm8 is one of the most significant iOS jailbreak methods ever, as it exploits the bootrom on all iPhones systems-on-a-chip from the A5 chipset (introduced with the iPhone 4S) through the A11 (iPhone 8/8 Plus/X). 

The version of iOS running on the device does not matter, and, unlike previous jailbreaks, the flaw allowing the checkm8 jailbreak cannot be fixed by Apple with a software or firmware patch as the bootrom code cannot be changed.

As a result, there's a lot of public interest in checkm8, but it's not that easy to implement. It and the software tool to use it are downloadable here if you want to try it yourself, though you may brick your phone doing so.

So a group of jailbreakers are trying to get checkm8 ready for prime time, so to speak, and have put up a website at checkra1n.com as a placeholder. (Checkm8 makes use of the older limera1n exploit, hence the "checkra1n" name.) There's nothing on the checkra1n site at the moment except a bitmapped image of chess pieces.

How the fake jailbreak site works

But crooks will always sense an opportunity, and hence the bogus website aims to lure people who don't realize there's a "1" in the checkra1m name or who just type it in incorrectly. 

We went to the checkrain[.]com site Wednesday (Oct. 16) and saw nothing except some text files, even when viewing it from an iOS device. It may be down for maintenance or retooling. 

But according to Cisco Talos researchers Warren Mercer and Paul Rascagneres, when the fake site is working properly, it checks to see if the visting browser is running on an iPhone. 

If so, then it presents a button labeled "INSTALL CHECKRA1N 1.3.5 (NO PC)." (The real checkm8 exploit requires connecting an iPhone via USB cable to a Mac or a Linux machine.)

You'll be asked to install a configuration profile that will alter your device's network settings. (Configuration profiles are usually deployed by enterprises to set up iOS devices to use the corporate network.) A checkra1n "app" will then appear on your screen, but it's not really an app. 

If you click the fake app, you'll see what looks like a jailbreak process appearing on your screen, including a dialogue box chronicling the various steps of the process. But that's fake too — the "screen" is actually a web page with no address bar playing an animation. 

While all this is going on, the webpage is putting hidden web ads "under" the main page to generate click-fraud revenue for crooks. (Online ad distributors get paid each time someone views an ad, and click fraud gins up the numbers.) 

When the process is almost done, you'll be given a list of other apps, two of which you must install to "complete the jailbreak." The apps are free but full of ads, which generate more income for the crooks.

What to do if you fall for the fake checkm8

For now, there's not much danger from this fake jailbreak, other than perhaps a diminished battery life. But the Cisco Talos researchers noted that the malicious configuration profile could be used to install malicious mobile device management (MDM) software, which would place your device under someone else's control.

To make sure you don't have any strange configuration profiles or MDM software, go into your iPhone's Settings app, select General and look for an option labeled "Profiles & Device Management." 

If it's not there, you're in the clear. If the option is there, check the profiles — they may have been installed by your employer or school, and should be obvious if so. Otherwise, delete the profiles. 

See more Phones News
TOPICS
Paul Wagenseil
Paul Wagenseil

Paul Wagenseil is a senior editor at Tom's Guide focused on security and privacy. He has also been a dishwasher, fry cook, long-haul driver, code monkey and video editor. He's been rooting around in the information-security space for more than 15 years at FoxNews.com, SecurityNewsDaily, TechNewsDaily and Tom's Guide, has presented talks at the ShmooCon, DerbyCon and BSides Las Vegas hacker conferences, shown up in random TV news spots and even moderated a panel discussion at the CEDIA home-technology conference. You can follow his rants on Twitter at @snd_wagenseil.

Latest in iPhones
iOS 19 logo on an iPhone
iOS 19 — all the rumors so far
3D printed models of alleged iPhone 17 Air and iPhone 17 Pro design
iPhone 17 Air dummy model shows off Apple’s big design change
iPhone 16 Pro shown held in hand
iOS 19 may bring Apple Intelligence powers to more iPhone apps — but without any big new features
A render of the iPhone 17 Pro Max
iPhone 17 Pro Max — this new rumor could push people towards iPhone 17 Air
Apple Intelligence logo on iPhone
Apple confirms Siri 2.0 is delayed — 'it’s going to take us longer than we thought'
iPhone 17 Pro render
iPhone 17 Pro Max and iPhone 17 Air designs just teased in new video — here's your first look
Latest in News
iOS 19 logo on an iPhone
iOS 19 — all the rumors so far
NYTimes Connections
NYT Connections today hints and answers — Tuesday, March 11 (#639)
An image of a CAPTCHA
Hackers are using reCAPTCHA to trick users into infecting their own PCs with malware — how to stay safe
Gmail logo on iPhone
Gmail just got a huge AI upgrade that will save you a ton of time
Nina Oyama and Kate Box in Deadloch
One of my favorite shows on Prime Video has been totally overlooked — and it's got 100% on Rotten Tomatoes
Xbox handheld
Xbox handheld reportedly arriving this year, new PC-like console in 2027
More about iphones
iOS 19 logo on an iPhone

iOS 19 — all the rumors so far
3D printed models of alleged iPhone 17 Air and iPhone 17 Pro design

iPhone 17 Air dummy model shows off Apple’s big design change
Selection of items ready to clean sports earbuds

How to clean sports headphones after a workout: a step-by-step guide
See more latest
Most Popular
Nina Oyama and Kate Box in Deadloch
One of my favorite shows on Prime Video has been totally overlooked — and it's got 100% on Rotten Tomatoes
iOS 19 logo on an iPhone
iOS 19 — all the rumors so far
(L-R) Mark Eydelshteyn as Vanya and Mikey Madison as Anora "Ani" Mikheeva in "Anora"
7 top new movies to stream this week on Netflix, Max, Hulu and more (March 11-17)
NYTimes Connections
NYT Connections today hints and answers — Tuesday, March 11 (#639)
NYT Strands on a cellphone
NYT Strands today — hints, spangram and answers for game #373 (Tuesday, March 11 2025)
An image of a CAPTCHA
Hackers are using reCAPTCHA to trick users into infecting their own PCs with malware — how to stay safe
Gmail logo on iPhone
Gmail just got a huge AI upgrade that will save you a ton of time
Xbox handheld
Xbox handheld reportedly arriving this year, new PC-like console in 2027
Concept image of foldable iPad
Apple reportedly has an 18.8-inch foldable iPad prototype with under-display Face ID
Bradley Barcola of Paris Saint-Germain takes on goalkeeper Alisson Becker of Liverpool during a UEFA Champions League 2024/25 match
Liverpool vs PSG live stream: How to watch Champions League game online and on TV