Hackers Find Crack in RIM's Security Armor, BlackBerry PlayBook Gets Rooted
November 30, 2011 3:50 PM
comment(s) - last by
RIM vows to patch the security hole, if it is confirmed
The BlackBerry PlayBook
is veteran Canadian smartphone maker Research in Motion, Ltd.'s (
) first crack at a modern tablet. And with surprisingly solid hardware, access to Android's massive app catalog, and certain semi-exclusive high profile app titles (e.g. Dead Space) the PlayBook is a pretty attractive option.
Unfortunately it's just become a blemish on RIM's generally outstanding security record, if recent reports prove true. Reportedly the PlayBook has been rooted by three OS hackers, whose handles are xpvqs, neuralic, and Chris Wade. The hackers first announced their success
, then posted a video of the running exploit:
I. New Exploit Reportedly Works Across All Current QNX Versions
The alleged exploit used by the PlayBook hackers was dubbed "DingleBerry" --
slang term -- perhaps a disturbing play on the nickname "
The BlackBerry PlayBook [Image Source: RIM]
According to the creators it works both with the beta preview channel build of the PlayBook's
QNX operating system
, and for all released versions. It gives you privileged access to the core operating system files. And it persists between updates.
There is some interest in using the root to perform a full-fledged port of Android to the PlayBook, perhaps in a dual-boot configuration with QNX to retain access to the core BlackBerry services.
that they are investigating the rooting incident and will issue a patch if indeed the vulnerability is real.
II. To Root or Not To Root
In the word of security vulnerabilities, there's all sorts of levels of severity, but the most serious is a vulnerability that grants the user super-user/"root"-level privileges in a operating system. If a malicious attacker gains root access they can compromise all sorts of private data and personal interactions on a device, typically for financial gain.
On the other hand using vulnerabilties to root phones allows customers to overcome carrier and OEM restrictions placed on a device (i.e. "jailbreak" a device). For example,
rooting an iPhone
allows you to install wallpapers rather than face the same old boring black screen, which Apple, Inc. (
Some companies like Google Inc. (
) and Microsoft Corp. (
) have taken a tolerant approach [
] to rooting/jailbreaking. Their basic premise is that if they allow savvy developers to find a certain "back door" with the promise of non-disclosure, then non-malicious hardware hackers will spend less time searching for vulnerabilities, less vulnerabilities won't be published, and malicious hackers may not have any easy path to root action.
Apple, on the other hand, has actively fought rooting efforts [
] by non-malicious jailbreakers as they represent a threat to its revenue stream by allowing third party non-App Store applications, which Apple doesn't get a cut of the revenue from.
RIM hasn't had to practice either approach for the most part, as its platform has been tightly secured. And these days the company's waning popularity also helps lessen users' interest in rooting its device. Along with other features, like enterprise-quality encryption on the core services, RIM has buillt up a reputation for fine mobile security. That reputation has been a major selling point of BlackBerries in the corporate atmosphere.
This article is over a month old, voting and posting comments is disabled
11/30/2011 9:58:25 PM
usually dingleberries are actually in the crackberries...
"If you look at the last five years, if you look at what major innovations have occurred in computing technology, every single one of them came from AMD. Not a single innovation came from Intel." -- AMD CEO Hector Ruiz in 2007
"Comex" Can Outsmart Apple, But Still Has to Deal With His Parents
August 1, 2011, 5:20 PM
Apple's iOS Updates Kill Only iPad 2 Jailbreak
July 18, 2011, 8:45 AM
BlackBerry PlayBook Review Roundup
April 13, 2011, 9:52 PM
Gingerbread ROM for EVO, Droid Eris in the Works
December 7, 2010, 9:17 AM
Jailbreakers Free Apple TV From Its Maker's Restrictions
October 1, 2010, 11:03 AM
Call-capable Samsung Gear S Smartwatch Launches Nov 7 in U.S.
October 30, 2014, 12:45 PM
Lenovo Completes $2.91B Acquisition of Motorola
October 30, 2014, 11:57 AM
Samsung Electronics Q3 Profit Falls by 60%, Mobile Division Sees 74% Profit Decline
October 30, 2014, 10:10 AM
Microsoft's $199 Fitness Band Packs in 10 Sensors, Works with Windows Phone, iOS, and Android
October 30, 2014, 8:58 AM
Google’s Project Ara Modular "LEGO" Smartphone Shown Booting Up on Video
October 29, 2014, 5:28 PM
After Touting Security, Privacy Controls, MCX/CurrentC Hack Exposes Customer Email Addresses
October 29, 2014, 3:08 PM
Most Popular Articles
Amid Theater Boycott Netflix Defiantly Plans New Movies, Plus 3 TV Shows for 2015
October 24, 2014, 7:30 PM
AT&T Defeats Purpose of New Apple SIM, Locks iPad Air 2 SIMs to Its Network
October 24, 2014, 2:17 PM
CVS, Rite Aid Kill Unofficial Apple Pay Support, Burn Google Wallet Users in the Process
October 25, 2014, 5:26 PM
1 Million Credit Card Activated on Apple Pay Within 72 Hours, Walmart CEO Hopes Visa "Suffers"
October 28, 2014, 8:17 AM
Microsoft's Figures Show Desktop Users Flocking to Windows 10 Preview
October 27, 2014, 11:04 AM
Latest Blog Posts
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information