iPhone Source Code Was Leaked by Low-Level Apple Employee - MacRumors
Skip to Content

iPhone Source Code Was Leaked by Low-Level Apple Employee

by

Earlier this week, source code for iBoot, a core component of the iPhone's operating system, leaked on GitHub. The code was old, for a version of iOS 9, and it was quickly pulled from GitHub after Apple issued a DMCA takedown notice, but it left many wondering how such sensitive code ended up publicly available.

To answer that question, Motherboard got in touch with unnamed sources who were involved in the leak and investigated screenshots, text messages, and more, to determine just how it happened.

ios 9 ipad iphone
As it turns out, the code originally came from a low-level Apple employee who took the code from Apple in 2016 to share with friends in the jailbreaking community. This employee wasn't unhappy with Apple and didn't steal the code with malicious intent, but instead was encouraged by friends to obtain the code to benefit the jailbreaking community.

The person took the iBoot source code--and additional code that has yet to be widely leaked--and shared it with a small group of five people.

"He pulled everything, all sorts of Apple internal tools and whatnot," a friend of the intern told me. Motherboard saw screenshots of additional source code and file names that were not included in the GitHub leak and were dated from around the time of this first leak.

The original group of five people who were provided with access to the code didn't intend to share it, but it somehow got out. From one of the original people involved:

"I personally never wanted that code to see the light of day. Not out of greed but because of fear of the legal firestorm that would ensue," they said. "The Apple internal community is really full of curious kids and teens.I knew one day that if those kids got it they'd be dumb enough to push it to GitHub."

The code began circulating more widely in 2017 and picked up in popularity late in the year before ending up on GitHub this week. Many in the jailbreaking and iPhone research communities attempted to stop sharing, but the major public leak couldn't be avoided.

According to the unnamed people who spoke to Motherboard, what leaked wasn't the "full leak." "It's not the original leak-it's a copy," said one source.

Following the leak, Apple confirmed the authenticity of the code in a statement to MacRumors and pointed out that it's for a three-year-old operating system that's been replaced by iOS 11 and is in use only on a small number of devices.

"Old source code from three years ago appears to have been leaked, but by design the security of our products doesn't depend on the secrecy of our source code. There are many layers of hardware and software protections built into our products, and we always encourage customers to update to the newest software releases to benefit from the latest protections."

The iBoot code leak should not be of concern to the average user because Apple has many layers of protection in place, like the Secure Enclave, and does not rely on source code secrecy alone to keep its users safe. The leak could, however, make it easier for people to locate vulnerabilities to create new jailbreaks.

Popular Stories

iOS 26

iOS 26.4 Adds Two New Features to CarPlay

Tuesday March 24, 2026 1:55 pm PDT by
iOS 26.4 was released today, and it includes a couple of new features for CarPlay: an Ambient Music widget and support for voice-based chatbot apps. To update your iPhone 11 or newer to iOS 26.4, open the Settings app and tap on General → Software Update. CarPlay will automatically offer the new features so long as the iPhone connected to your vehicle is running iOS 26.4 or later....
Read Full Article27 comments
Apple Business hero

Apple Unveils 'Apple Business' All-in-One Platform

Tuesday March 24, 2026 8:53 am PDT by
Apple today announced Apple Business, a new all-in-one platform that unifies device management, productivity tools, and customer outreach features. The service is designed to be a consolidated replacement for several of Apple's existing business-focused offerings, including Apple Business Essentials, Apple Business Manager, and Apple Business Connect. It provides organizations with a single...
Read Full Article47 comments
AirPods Pro Firmware Feature

Apple Releases New Firmware for AirPods Pro 3, AirPods Pro 2 and AirPods 4

Tuesday March 24, 2026 12:31 pm PDT by
Apple today released new firmware for the AirPods Pro 2, AirPods Pro 3, and the AirPods 4. The firmware has a version number of 8B39, up from 8B34 on the AirPods Pro 3, 8B28 on the AirPods Pro 2, and 8B21 on the AirPods 4. There is no word on what's included in the firmware, but Apple has a support document with limited notes. Most updates are limited to bug fixes and performance...
Read Full Article88 comments

Top Rated Comments

rpmurray Avatar
rpmurray
106 months ago
Five people can keep a secret if five of them are dead.
Score: 27 Votes (Like | Disagree)
OldSchoolMacGuy Avatar
OldSchoolMacGuy
106 months ago
BREAKING NEWS: Android source code leaked, possibly by Google themselves!!

https://source.android.com

This isn't a big deal. If anything it means finding some remaining open holes which can then be patched. All Linux is open source. There aren't issues there because of it. If anything it means others can help to find vulnerabilities which can then be corrected.

iOS 9 was released 3 years ago. A LOT has changed in the source code since then and this isn't even the entire source as it can't be compiled.
Score: 22 Votes (Like | Disagree)
sputnikv Avatar
sputnikv
106 months ago
good way to ensure you don’t get hired by another tech giant
Score: 12 Votes (Like | Disagree)
L
lec0rsaire
106 months ago
What a scumbag. There's really no other word to describe someone who would do this. You're given an opportunity to work for one of the best companies in the industry or the world for that matter and you betray them in the worst way possible. This isn't a careless employee leaving an iPhone 4 prototype at a bar. Malicious intent or not, this is a criminal act and I hope this guy is prosecuted to the fullest extent of the law.

It's one thing when jailbreakers find exploits on their own through countless hours of hard work and another thing when an employee violates the trust given to him by his employer. Thankfully the impact of this is limited and the security of most users won't be compromised but Apple will have to be a lot more careful with the people they hire from now on and what they're able to leave the premises with.
Score: 10 Votes (Like | Disagree)
iOSFangirl6001 Avatar
iOSFangirl6001
106 months ago
Yikes. I wonder if he's going to be fired.
Pink Slip Time

The funny thing is that his friends push him to do it and then they expose him.
Funny how “friends” can throw friends under the bus huh?
Also peer pressure may have been a red flag as to how good of “friends” they really were

“Dude come do this thing that’s possibly illegal or could get us sued”

Not well thought out on the part of the friends
Score: 7 Votes (Like | Disagree)
hsotnicam8002 Avatar
hsotnicam8002
106 months ago
Thief - jail.
Score: 7 Votes (Like | Disagree)
Read All Comments