Category: 提示与技巧

This guide will show you how to Change your Android SELinux mode to permissive on an Android phone, helping you better run various apps to their fullest.

We are not responsible for any damages that occur through following this article. at the time of writing the steps worked fine for the test android phone we were using and we were able to change selinux successfully using a custom kernel.

As we have mentioned throughout this article custom kernels are not available for all versions of every Android phone ever made. however popular phones should be covered. Always take care and backup the device at all stages and correctly choose the kernel for the android model number of the phone you are working with.

Changing SELinux from enforced to permissive will Not Work on Samsung Android Phones with Samsung Knox enabled and it may also not work for other Android phones from other manufacturers depending on the Sndroid os version installed.

What is SELinux?

SELinux or ‘Security Enhanced Linux’ is an Android OS module that is designed to identify and address critical security gaps in the Android operating system. It is used to protect the Android operating software from malicious code or software being installed and causing damage to the phone.

Unfortunately those same ‘security gaps’ associated with malicious software also allow many apps at their root features to function properly. With SELinux in Permissive mode the security gaps in the Android operating system are not fixed and so the programs can use those to run properly.

With SELinux set to Enforced mode the security gaps are fixed, therefor the software cannot run all of its root features properly which results in Limited mode and reduced functionality.

How does SELinux affect applications?

When Samsung released Android OS 4.3 they changed the SELinux option from Permissive, which is what a lot of applications need, to Enforced which means that while most applications will work certain features will not.

For example, when you install FlexiSPY on a rooted phone, as part of the installation process, while it checks for root permissions within SuperSU (after you grant access) it also checks the SELinux status to see if it is set to Enforced – if it is then it will try to force the permission status to permissive.

If it is successful then the software runs in root mode with full access, whereas if it’s unsuccessful, then it will run in root mode with limited access.

How To Check Your SELinux Settings

On the phone, go to Settings > More > About Device and then scroll down to the bottom where you’ll see SE for Android Status

Easily Change Your Android SELinux Mode To Permissive

There is a program on the Play Store (link below) that can change the SELinux mode of non-Samsung Android phones and Samsung Android phones running OS 4.4.2 and below but anything above that and the software will not work – we mention about issues with OS 4.3 and above here

All you need to do is download the application on to the Android phone, run it and tap the Permissive button but, if the Android phone is a Samsung Android phone with OS 4.3 or above installed which also has Knox running then it will no longer work.

• Download and install SELinux Mode Changer from the Play Store onto your phone.
• Run the application and set SELinux to Permissive
• Restart the phone
• Check the SELinux status in the About Device menu to see if it has changed.Note: This process will not only downgrade the OS version but it will also DELETE ALL DATA ON THE PHONE.

Didn’t work? | Install a Custom Kernel

One way to get around SELinux being set to Enforced is change the kernel to one which has been edited so that SELinux has been set to Permissive which should theoretically allow your apps, or FlexiSPY to run in Full mode.

These kernels though may not exist or may be hard to find for every Android phone.

Any Android phone, not just Samsung, whose SELinux status is set to Permissive can run FlexiSPY in FULL MODE.

First of all you need to find out if the Android phone you have has SELinux set to permissive or not which we have explained earlier.

SELinux cannot always be changed so easily depending on the make and mode of the Android phone.

And this is why we have to install a custom kernel if the SELinux Mode Changer application fails to fix the problem.

Please note that custom kernels with selinux set to permissive are not available for all android phones – regardless of whether they are made by samsung or not.

Where can you download a custom kernel?

The Android OS kernel is the most important part of the Android OS. It allows the phone software to interface with the hardware and the application that are installed on the phone, basically telling the phone how to run and what settings and configuration it has and then all this information is used for all installed programs on the Android phone.

The best place to look for custom kernels is the forum on XDA Developers.

How can I install a Custom Kernel which has SELinux set to permissive?

For this example we are using a Samsung Galaxy S4 so we go to XDA forums to get started.

The first thing to do is type in your Android phone model.

Make sure you choose the correct one from the list as many of the same Android phones have country variants with different model numbers.

You can find the model number to search for on the Android phone by going to the About Device (can also be called About Phone) menu and it will be listed.

For example the model number of our Samsung Galaxy S4 is GT-I9505 so that is what we need for our custom kernel.

Once you have entered the model number to search for you will get the main page for that Android phone.

We need a custom kernel so we click the Kernels tab.

You now need to simply browse through all the custom kernels until you have found one that says it has SELinux set to permissive.

For our version of the Samsung Galaxy S4 we found one pretty easily.

As you can see it matches the model number of our Samsung Galaxy S4 and has SELinux set to permissive and runs on Android OS 4.3.

Note: never install a custom kernel on to a phone whose model number does not match. doing so can make the phone inoperable.

Custom Kernel Installation Guide

The first thing to do is to backup the phone completely. This is vitally important. We explain how to backup an Android phone completely in this article.

Once you have backed up the phone completely download the ROM file from here.

Once you have downloaded the kernel file to your PC you need to install Clockworkmod recovery on to your Android phone. If you have already rooted the Android phone then you already have Clockworkmod installed – you can learn more about rooting and how to root popular Android phones here.

Now that you have backed up the Android phone and rooted it to install Clockworkmod recovery it is time to install the customized kernel.

First you need to connect the Android phone to your PC.

Once it is connected it will appear as a device. Simply copy the kernel zip file to the Downloads folder of the phone, once you have done that we can boot in to ClockworkMod recovery and flash the kernel.

1. Make sure the Android phone is turned off completely.
2. Hold down the Volume Up, Home button and power together until the model number appears.
3. Let go of the key combination and Clockworkmod recovery should load.
4. From the list of options choose Install zip from Sdcard
5. Browse to the kernel zip file you copied to the phone and select it.
6. Install the kernel and wait for it to complete.
7. Choose ‘Reboot System Now’ to reboot the phone.

Now that you have flashed the custom kernel and rebooted the phone it is time to check the SELinux status.

Using the above screenshot as an example you would need to check the SELinux status which is highlighted and the Kernel version should also have been updated to reflect the custom kernel that you just installed.

Providing everything was done correctly and SELinux was successfully changed to Permissive you can now install FlexiSPY (or deactivate and uninstall and reinstall to get full mode) and start taking advantage of the great features that FlexiSPY offers on a rooted phone.

This guide will show you how to downgrade the HTC One M8 OS software and return it to factory settings.

Note: This is only for the T-Mobile or ATT HTC One M8 – DO NOT USE IT ON ANY OTHER VERSIONS

Disclaimer: FlexiSPY is not responsible for downgrading the Android device in any way. Before performing any of these steps make sure you back up your Android device completely. These steps are performed at your own risk.

What do you need to downgrade the HTC One M8?

In order to downgrade the HTC One M8 you will need the following:

• The HTC One M8 you wish to downgrade in your hand.
• A PC.

Note: This process will not only downgrade the OS version but it will also DELETE ALL DATA ON THE PHONE.

Getting started

The first thing you need to do is make sure you have set up the Android SDK on your PC and that ADB is installed and working.

In order to use Fastboot to downgrade the HTC One M8 you must have the Android SDK downloaded and installed on to your computer

You can download the SDK from here.

Step 1 – Gain S-Off on your HTC One M8

You need to gain S-Off on your HTC One M8 to be able to downgrade it and you can use Firewater and the website here to do this – please read all instructions carefully.

Step 2 – Download the HTC USB drivers for your PC

In order for your HTC One M8 to be recognised once you connect it to your PC, and for Fastboot to work please install the drivers from here.

Step 3 – Enable USB debugging on the HTC One M8

On the HTC One M8 you must enable USB debugging so that the PC recognizes it when you connect it and you can downgrade it.

To do that, on the device, go to Menu > Settings > Developer options and make sure USB debugging is selected.

Step 4 – Connect the HTC One M8 to your PC and run Fastboot

Connect the HTC One M8 to your PC.

On your PC browse to the Fastboot folder that you got after you installed the Android SDK.

Hold down the shift key whilst right-clicking to open a command prompt window.

Type “adb reboot bootloader” and press Enter. The phone will reboot into bootloader mode.

On the phone select the Fastboot option.

In the same command prompt window type “fastboot oem lock” and press Enter.

The HTC One M8 bootloader will then be locked – this may take some time.

You only need to lock the bootloader if you unlocked it for rooting the device – otherwise skip this step.

Step 5 – Download the downgrade RUU file

On your PC download the T-Mobile RUU (ROM upgrade utility) file that you will use to downgrade the phone. You can get it from here. The ATT version is here.

Step 6 – Downgrade the phone

With the HTC One M8 still in Fastboot mode and connected to your PC and the downgrade RUU file downloaded simply run the RUU file itself.

On the window that appears select the Update option and follow the on-screen instructions.

Once the entire process has finished the HTC One M8 will reboot and then you can remove it from your PC.

Once the HTC One M8 boots up it will be running the same stock OS as it was when you first purchased it.

You only need to lock the bootloader if you unlocked it for rooting the device – otherwise skip this step.

Update – 7/7/2015

You can now spy on up to iOS 8.4 with FlexiSPY! Learn more by checking out our post about this release, on the blog

Update – 1/7/2015

You can now spy on up to iOS 8.1.2 with FlexiSPY.

To do so, you’ll need to jailbreak your iPhone, which we’ve provided a guide for – here

Both FlexiSPY PREMIUM & FlexiSPY EXTREME are compatible with this latest jailbreak.

Update 10/24/2014 – Now Outdated

Pangu has now released a jailbreak for iOS8 / 8,1, it’s still advised that you not update your phone to iOS 8 as the jailbreak just released is not stable and FlexiSPY doesn’t support this latest jailbreak yet (as well as all other mobile spy software)

Some of the information Below is out of date, but still contains important information:

Original Post – Now Outdated

Currently FlexiSPY (And all other mobile spy software) Do Not Support iOS 8 as there isn’t a jailbreak out for it yet.

Please Do Not Update To iOS8. You can prevent the iOS 8 update by reading the section in the article called: Can You Stop iOS 8 From Being Updated By The User And Losing The Jailbreak?

With the release of iOS8, the iPhone 6, and iPhone 6 plus, many people are wondering if it’s still going to be possible to install mobile spy software onto their Apple devices. The answer in short, is yes, You will be able to Spy on an iPhone 6, an iPhone 6 Plus, a device running iOS8, and possibly even the iWatch. However, the question that can’t be answered definitely yet, is: When Can I Spy On These New Devices?
In this article we will answer some of the most common questions that we get from people, if you have after finishing the article, please contact us in the comments section at the bottom of the page.

A Date For Spying On iOS8 Devices Hasn’t Been Set Yet

Mobile spy software for iOS devices (such as the iPhone 6, 6 Plus, etc) all rely on the target phone being Jailbroken. This means that no mobile spy software can claim to work on an iOS device unless there’s been a jailbreak released for that iOS version. And currently, there is no jailbreak for iOS8.

So again, Without the ability to jailbreak any iOS 8 device such as the iPhone 6, iPhone 6 Plus or Apple Watch it is not possible yet to install any spy phone software onto the device.

How Long Will It Be Before I Can Jailbreak The iPhone 6?

No one really knows.

The time it takes for the latest version of iOS 8 to be released and the time it then takes for clever hackers to jailbreak the iOS (it is not something done by FlexiSPY in any way) can vary significantly. Actually it is taking longer and longer for a jailbreak to appear after the release of the latest version of iOS due to Apple making it more and more secure and thus fixing the exploits that jailbreak teams such as Evad3rs used to jailbreak the device.

Ironically, when Apple released iOS 6.1.3 (which killed the iOS 6.1.2 jailbreak by Evad3rs) they actually credited the Evad3rs team for helping them fix it by finding the issues and exploits that Apple patched to make iOS 6.1.3 possible.

Please be aware that there are currently many scam sites already advertising ways to jailbreak iOS 8 and these are all false – please be careful. You should follow one of our social media channels if you want to be the first to know when the jailbreak comes out.

We know they’re false because:

At the of publishing this article, iOS 8 was not even released yet to the public
There is no jailbreak of any kind available yet for the finished version of iOS 8
The video on the site shows how to jailbreak iOS 7 (if it really could jailbreak iOS 8 then why post bogus videos for an older iOS that anyone can jailbreak?)

Here’s what one of these sites can look like, so be careful.

Why is it taking so long to jailbreak iOS 8?

iOS beta versions can be jailbroken but this does not mean the final version can be.

At the time of writing (September 11^th 2014) iOS 8 is not even out officially to the public and neither is the iPhone 6, iPhone 6 Plus and the Apple Watch is scheduled for the early part of 2015 so unfortunately you simply must wait.

Once iOS 8 is released publicly people will start to look at ways to jailbreak it. This could be easy, it could be hard. For those that are unaware the last jailbreak for iOS 7.1.x came from a Chinese hacking group and was called Pangu. During tests of the jailbreak it still worked on the iOS 8 beta versions but this is no way indicative to say that the same jailbreak will work on the final version of iOS 8.

iOS 8 Tethered and Untethered Jailbreaks – What Are They?

Untethered jailbreaks are always the best but take longest to arrive and no jailbreak is truly permanent.

Once someone figures out how to jailbreak iOS 8 when it is released to the public it will be tethered only to start with. This is always the case. A tethered jailbreak is essentially the ‘quick and dirty’ way just to prove a jailbreak can be done and it is usually complex (the process is as technical as it gets before it is streamlined to make it easier for public consumption) and it also has one main caveat which is explained below.

Tethered jailbreak – As soon as the iPhone is turned off or rebooted or loses power the jailbreak will be lost and, to boot up the phone to even use it you must connect it to your PC and then you have to jailbreak again and the process repeats until the phone is rebooted or loses power or turns off (rinse and repeat).

As you can see, this is not ideal at all and this is why FlexiSPY does not start to develop software until an untethered jailbreak is available. For a tethered jailbreak, not only would the person need to keep rejailbreaking the phone but every time the jailbreak is lost FlexiSPY would need to be physically installed again and this is just not ideal. Of course if Apple update iOS 8 in the meantime and people upgrade to that then it can mean the tethered jailbreak no longer works which further means the wait for an untethered jailbreak increases.

FlexiSPY understands that people cannot get the iPhone’s they wish to track all the time to keep jailbreaking it all the time if the jailbreak is tethered. Furthermore, from a development perspective, an untethered jailbreak is far safer to work with than a tethered one because an untethered jailbreak is permanent unless the iPhone is factory reset.

A tethered jailbreak is the first to be available but is not really worth it.

Untethered jailbreak – An untethered jailbreak takes the longest but it is the jailbreak that everyone wants and FlexiSPY prefers. An untethered jailbreak is permanent once applied unless the device is factory reset or upgraded to a new iOS version from Apple that fixes the exploits used in the untethered jailbreak (which means it is back to square one – waiting for a jailbreak for the new iOS 8 version and this is nothing to do with FlexiSPY).

Untethered jailbreaks are what everybody really wants, including FlexiSPY, but the wait for them to appear gets longer and longer.

Can You Stop iOS 8 From Being Updated By The User And Losing The Jailbreak?

Nobody knows at this time but, in theory, if you can do it on iOS 7.x then iOS 8 should be able to also – given time.

Now there are Cydia tweaks for iOS 7.x that you can get such as Recoveryguard that trick iOS in to thinking that the version installed is the latest one which stops the iPhone owner from being able to upgrade the iOS directly from the iPhone itself.

However this does not apply if the iPhone is factory restored in iTunes as iTunes always checks for the latest iOS version before it restores or if the iOS is updated from ITunes itself.

Please note that at the time of writing nobody knows if Recoveryguard is compatible with iOS 8 once it is released but it works fine in iOS 7 providing you have jailbroken the phone.

You can install RecoveryGuard by adding the Cydia source http://cydia.pushfix.info to your list of Cydia sources and then tapping that source and finding RecoveryGuard and installing it the same as you installed FlexiSPY or any other Cydia program.

Unfortunately though RecoveryGuard is a tweak you can only get through Cydia and you get Cydia by, yes, you guessed it, jailbreaking the phone so the people who create these tweaks also have to wait for iOS 8 to be jailbroken so that they can update their applications and make them compatible – the same as FlexiSPY.

Can I Spy On Someone’s Apple iWatch?

We are not sure if people want spy phone software for the Apple Watch. If you are interested,  let us know in the comments and we will be sure to look in to it.

The Apple Watch still requires an iPhone to be tethered to it in order to receive notifications (you basically look at the watch on your wrist instead of pulling the iPhone out of your pocket instead – but not much more than that) so it may just be better to wait for FlexiSPY to fully support iOS 8 (which will run on the iPhone 4S, iPhone 5, iPhone 5S, iPhone 5 C, iPhone 6, iPhone 6 Plus, Apple Watch and all iPad generations starting from the iPad 2) instead so you can spy on the actual iPhone tethered to the Apple Watch and not the Apple Watch itself.

How long do we need to wait for FlexiSPY?

The Gold Master (final version) of iOS 8 was just released so our developers are getting to grips with that to see the new features and how we add even more great new features in to FlexiSPY but, as said, with no jailbreak there is not much we can do right no except speculate what we can do and just wait for any kind of jailbreak (tethered or untethered) and test our theories and get FlexISPY working.

In the meantime though don’t forget that FlexiSPY still works on iPhone’s and iPad’s that have been jailbroken.  This is something we will of course retain in our software for iOS 8, our software can hide Cydia too meaning that, whether it is iOS 7 or iOS 8 you have just jailbroken to install FlexiSPY you can hide all traces of the jailbreak (Cydia) and our software also hides itself completely too for complete stealth.There’s actually a guide for doing so, here.

That’s All For Now | But Stay Up To Date

Currently this is the latest situation regarding FlexiSPY and iOS 8 and the new iPhone 6, iPhone 6 Plus and Apple Watch. However we will be sure to update this article with any new information regarding when FlexiSPY is available for iOS 8 but, in the meantime, join us as we all patiently wait for the iOS 8 jailbreak to arrive. To make sure you’re up to date with the jailbreak, please follow us on one of our social media channels.

“You’ve probably heard about the celebrity pictures that were stolen and linked all over over the internet.. Furthermore you probably also know that Apple’s iCloud was -at least in part- at fault”

But what you may not be aware of is just how easy the whole thing was, and how, using applications that are simple to find, you too can gain access to practically anyone’s iCloud account – and you don’t need to be a hacker to do it.

Notice: Everything in this article is for educational purposes only. Apple most likely have fixed the exploits that lead to the data leak so this is just a proof of concept article showing how it was most likely done. FlexiSPY is not responsible for any damages, loss or anything else that incurs if you do try to recreate these steps.

How Did The Leak Happen?

According to reports it was simply due to the accounts that were compromised being unsecure. For example they failed to turn on two-step notification for their account or their password was just too easy to guess. Once access was gained in to the accounts, and because most iPhone users happily let their device upload all pictures to their iCloud account without ever thinking of the consequences, a second piece of software was used to then download all backups of said iPhone.

Once those backups were downloaded the same program was used to explore its contents and this includes the pictures and videos that are now all over the internet and are being investigated by the FBI

So who is to blame? Apple for not making it clear enough that iCloud backs up everything? Apple for not making sure two-step sign up is mandatory? The user for not really fully understanding the implications of having their data stored in the cloud which can potentially be hacked?

If you own an iPhone every picture you take is uploaded to your iCloud account once you have signed in to the iPhone using your Apple ID. However this can be easily turned off (we stress that Apple have fixed the exploits so that passwords cannot be guessed by brute force which makes this hack no longer possible) so that you are no longer vulnerable.

The process that led to the leak consists of several steps.

2 Ways It Might Have Been Pulled Off

1. First off, the hackers needed to have access or know the email address of the persons targeted.
2. They used those email addresses to login to iCloud and guess the security password
3. They gained access to the account and then proceeded to download any iCloud backups.

Or it could have been done this way:

1. The hackers knew the email addresses of the people they wanted to target.
2. Hackers used a brute force tool and password list to guess the passwords.3. They gained access to the acocunt and then proceeded to download the iCloud backups.

Either way, one thing that hasn’t come to the surface yet is how the hackers got the email addresses to start with.

However there are many darknets where information like this is traded via the use of the encrypted TOR browser.

Replicating The Hack

This is done entirely for educational processes and, from the latest information, Apple have already fixed the iCloud vulnerabilities. So, for this we will just show you, hypothetically how it was done but we will investigate the software used to download and extract iCloud backups in more detail.

The first thing is to obviously know the email address of the people you wish to target. We are using our own Apple ID that we have set up which already contains an iCloud backup. However the program that is being pointed at to guess the passwords was called iBrute.

This is a small program written in Python that will try to brute force (guess the password) of all email addresses in the mail.txt file using the passwords in the passlist.txt file. However in the release notes it confirms as we have said, Apple have patched the exploit which means the program will no longer work.

So, for this, we are going to assume that we already have an account (Apple ID) whose password we know (which we do) so, because Apple fixed the exploit the next step is written from the perspective that iBrute worked and gave us an email address and password.

Before we proceed to the next section we need to understand just how iCloud works on an iPhone after you enter your Apple ID which is like this.

1. Enter your Apple ID on the iPhone – iCloud is enabled by default which photo sharing enabled.
2. Set up a new photo stream on the iPhone and add pictures – wait for them to be uploaded to iCloud
3. For PC download and install the iCloud Control Panel
4. Once it is installed you are asked to log in to iCloud.
5. You then click the Options button under Photos to see the photos that were be uploaded to iCloud
6. You can set the options to upload all photo streams from the iPhone to iCloud.
7. You can then see the iCloud photos that are stored on your PC.

What you may not be aware of is that even though photo sharing is enabled by default it is not as easy as logging in to any iCloud account and viewing the pictures online. iCloud does not work that way and even though we have set up a photo stream as a test it will not appear on the iCloud website.

Below you can see the photo stream on our PC we are using. We have added 3 extra pictures (you can just drag and drop any image file into the iCloud photos folder and it will sync.

So, if we log in to iCloud directly we see the following – no pictures of any kind.

So how does iCloud actually work?

1. Sign into iCloud on any iDevice using your Apple ID
2. Set up photo streaming and photo sharing in iCloud
3. Take some pictures or videos on the device
4. Login to a new iDevice with the same account.
5. All pictures and videos taken will appear on the new device.

So essentially iCloud is the backend that hosts and shares all pictures and vides (and other content such as emails and contacts) between all iDevices your account is logged in to but this also means that picture and videos backed up to iCloud are only visible on the specific iDevice.

So how do you get access to the pictures or videos if you cannot do it directly from iCloud itself?

This is the next thing we will discuss and where things get clever.

Backing Up To iCloud

Apple makes it pretty damn easy to back up data to the cloud, in-fact, it’s enabled on a persons iOS device by default. This includes automatic backup of photos from the camera roll.

All you need to be back up the phone is to make sure that your phone is charging, connected to wifi, and is locked. Once the device is backed (specifically iCloud) you’re able to perform the same steps that the hackers used to get access to the information.

Apple, for some strange reason, do not allow any iCloud backup to be password protected so it essentially means that should someone find software that can download all backups from an Apple ID and the respective iCloud account then they potentially have access to very personal or sensitive information.

This is what the hackers did

And this is what we will show you too (for educational purposes only)

The first thing you need is the PC software that was used which is called Elcomsoft Phone Password Breaker.  This is from a Moscow based company and the software is sold on the basis that it allows you to recover files from phone backups from variety of different manufacturers (Apple, BlackBerry, and Microsoft) and is to be only used for legal purposes only.

However looking at their main menu for a start tells you that this software could definitely be used for all the wrong reasons.

Decrypt Backup – Simply drag and drop any iPhone or iPad backup made within iTunes in to this option for it to be decrypted and for you to be able to view all data stored inside the backup.

Explore keychain – The keychain is encrypted by Apple and contains all the passwords on the device (iPhone or iPad). Again, just drop an iTunes backup on to this option to view all passwords used on the phone across all installed applications that have been stored in the keychain.

For those who are interested the keychain stores the following information:

1. Secure certificates
2. Tokens (e.g. Twitter, Facebook etc.)
3. Browser stored passwords
4. Wi-Fi passwords for all networks a device was connected at least once
5. Passwords, tokens and certificates stored by various applications

And the final option is what we are looking for – Download backup from iCloud.

It is obvious that the hackers just entered the email address and passwords of the people in question (which they obtained illegally as we explained) and then the software does the rest. For us we will be getting the data from the phone we just backed up.

So we put in the username and password of our Apple ID that we set up for this exercise and then we sign in and our backup is clearly listed at the top.

We then click the Download button and after a short time we can then choose any kind of information we want from inside the online backup.

All we are really concerned about is the camera roll as that is where all videos and pictures are stored but this software allows us to grab any and all information from an iCloud backup associated with the Apple ID that was used to sign in.

Essentially you just wait for the data to be downloaded to your PC and then you can pretty much do anything with it as you wish.

Apple makes this possible due to iCloud not having two step verification when you sign in (e.g. you sign in with a username and password and then answer a security question) which means that, as we have shown, just get the email address and password of an Apple ID and you potentially have access to phone backups which contains clearly sensitive and personal information.

How Can You Stop This From Happening?

The easiest way to stop yourself and your iDevice from becoming the next victim is simple.

1. Make sure your Apple ID password is strong
2. Turn off iCloud backups on the iDevice itself
3. Use a cloud system with better backup and security such as Dropbox

Apple have since patched the brute force method used but they have still not improved iCloud security to encompass two step verification although, in the wake of this scandal, we hardly think Apple will rest and leave their premier cloud backup solution with such a gaping hole in it for the whole world to look in.

We hope that you have found this article useful. Don’t forget that you can actually use FlexiSPY on your own iPhone or iPad to act as a secure and effective device backup tool so, if this interests you, why not check out a 24 hour demo of FlexiSPY right now?

[box type=”warning”] We no longer maintain rooting guides on our blog. This means that your phone might not be compatible with this guide. If you’re not sure, please consult our rooting team, who will root your phone, and install FlexiSPY for you, for a fee.
Click here to learn more about our rooting service[/box]

This article will show you how to root the Nexus 5 running the Android L developer

FlexiSPY is not responsible for the steps or rooting process given inside this article. However, all care has been taken to make sure that the information contained here is as accurate as possible. Please read and follow the instructions carefully and remember that rooting is entirely your own responsibility and FlexiSPY is not responsible for it in any way.

What’s Needed To Root?

We already gave a detailed blog article on how to install the Android L developer preview on a Nexus 5 which you can read here.

This article already assumes you have set up the following pre-requisites. If you have not done this please read the article linked above to learn how to set up the environment correctly:

1. You have installed the Android SDK onto your PC
2. You have enabled and are running USB debugging on the Nexus 5
3. You have correctly set the path variable within Windows for Fastboot to be used by the Android SDK

The next step is rooting it to allow you to get the most from the new Android OS.

Thankfully Android L and the developer preview has already been rooted and the process is quite simple and we have documented it completely below.

In order to root the Nexus 5 on Android L you will need the following:

• A Nexus 5
• The Android L developer preview image
• A PC

You will then need to install the Nexus root toolkit which you can find here.

Once you open up the Nexus rooting toolkit it will look like the picture below.

There are two steps to the rooting process. First of all, you must unlock the bootloader and second you can then root the Nexus 5.

Simply click the Unlock button to start the bootloader unlocking process. This will DELETE ALL DATA on the Nexus 5 and so, if you wish to back it up first please follow the steps in the previous article before continuing.

Once you have backed up the Nexus 5, as said, click Unlock and the following dialog box will appear with detailed instructions on the actual process and what will happen.

As long as you have set up the Android development environment on your PC correctly (see the prerequisites given above) then all you need to do is connect the Nexus 5 to your PC and follow the steps that appear to unlock the bootloader. The entire process will be automated providing you have installed the Nexus 5 USB driver and Android SDK and you just have to click OK to start.

The rooting toolkit will then check to see if USB debugging is enabled on the Nexus 5 and it will then proceed to restart the device and unlock the bootloader and it does this by using Fastboot and putting the phone into bootloader mode.

The entire process is short and only takes a few minutes. Once it is done the Nexus 5 will boot up normally and the Nexus toolkit will display a message saying that the bootloader was successfully unlocked.

You can tell if the bootloader has been successfully unlocked when the Nexus 5 is in Fastboot mode (as shown in the picture below) and the lock state is set to unlocked.

With the bootloader unlocked you can now proceed to root the Nexus 5 running the developer preview of Android L. Open up Android toolkit again and make sure the Custom recovery option under Root is also selected.

Once you click Root the following message will appear detailing the entire process which is also automated.

Simply click OK to start and the entire process will begin. Again you need to make sure the Nexus 5 has USB debugging enabled and you successfully installed the Android SDK on the PC that the Nexus 5 is connected to (via USB) whilst performing the rooting process.

The rooting process will also install the TWRP recovery as well which replaces the stock recovery used on the Nexus 5 and gives far more functionality. The TWRP recovery allows you to easily backup the Nexus 5, flash and install zip files (e.g. ROM kernels) as well as a whole host of other advanced features which is why, for this guide, to get the most out of the Nexus 5 we recommend you root the phone and install TWRP.

Once the rooting process has been completed you will easily be able to tell that the Nexus 5 has been rooted because you will see a new application called SuperSU which means the Nexus 5 running Android L has now been successfully rooted!

 
 

“他们认为我是一个失控的人……但我从来没有过像现在这样多的控制权。”

– 艾登•皮尔斯 《看门狗》

 

对于那些不熟悉游戏世界的人们来说，最近的热点之一就是Ubisoft推出的《看门狗》游戏。这款开放的游戏能够实现火爆GTA V游戏提供的一切，但其重点在于通过入侵城市来挫败敌人，而不只是依靠火力。

《看门狗》中的场景发生在未来的芝加哥，届时整个城市都依赖于CtOS主系统。显然，具备任何黑客知识的人都可能入侵系统，并给城市及其居民带来各种骚动（从本质上讲，这就是《看门狗》游戏的关键）。

很多人都已经在考虑艾登•皮尔斯完成黑客任务的合理性或可能性，比如调查谋杀您侄女的真凶。本文就是要向您说明，您在《看门狗》游戏世界所见和所做的一些事情，如今正在您的身边上演，并且已经持续发生了一段时间。

首先就是监听实时通话。在《看门狗》游戏刚启动时，您碰巧入侵了一个路人的手机，您可以在自己的手机上听到他的全部通话内容。

呼叫拦截功能可以让您实时监听另一个人的通话内容，而对方完全无法察觉到您的存在。《看门狗》展示了类似所有好莱坞电影和电视上的场景，让您认为可以通过远程黑客攻击来对付一切（提示：其实不然）。与此不同的是，如果您真的想利用FlexiSPY来监听他人的手机通话，您首先当然需要获取他人的目标设备，这样才能安装好FlexiSPY软件。

通话录音

在《看门狗》游戏过程中，您会发现一些音频记录，使您更深入地了解人们在未来芝加哥城内的生活情况。在游戏中，艾登只需入侵电脑就可以开始监听手机上存储的音频记录。在FlexiRECORD产品中，FlexiRECORD也运用同样的操作原理。但在FlexiSPY的实际运用中，您首先需要将监控软件安装到目标设备，将FlexiRECORD安装到您的电脑及其连接的安卓手机上。

之后，该软件就采用相同的工作方式。所有的通话内容都将被记录下来，并存储在您的电脑上。或者您也可以将录制的音频文件保存到您的手机，以便于在路上监听。

在《看门狗》游戏中，您不仅可以监听实时通话内容，还可以在四处行走时秘密监听芝加哥居民之间的私密谈话。事实上，FlexiSPY也具有这项功能（称为监听通话功能），使您可以用自己的手机拨打目标设备，并监听后者在您拨打电话时的周围环境。

FlexiSPY使得监听通话变得极其简单。您将FlexiSPY安装到目标手机后，只需到FlexiSPY在线控制面板输入您的手机号码，就可以启用监听通话功能并完成设置。

您只需用自己的手机拨打目标手机，就可以开始秘密监听。

《看门狗》游戏的核心就是入侵。当您为了逃脱警察的追捕而入侵交通信号灯系统，并在飞驰而去时回头看到警察碰上了一脸茫然的司机，或者看到警察因为您造成的交通阻塞而变得无法动弹，此时应该没有什么事情更能使您感到满足了。但是，您知道《看门狗》同样能让您入侵他人的短信通讯吗？没错，您在现实生活中也可以做到这一点。因此，这意味着在游戏过程中，您可以破解他人的短信来获取泄露的信息，甚至通过向其发送短信来转移他们的注意力，以便于您秘密地进行监控。

虽然目前的技术还不足以让您远程破解他人的手机（即使有很多欺诈信息），但您的确可以使用FlexiSPY软件拦截和读取他人的短信内容。

FLEXIRECORD

或者，您是否想尝试在逃逸之后再次入侵网桥？《看门狗》可以使您完成这些操作，Ubi Soft甚至用卡巴斯基作为杀毒顾问，以确保游戏中进行的黑客行为具有真实性，（虽然很多操作都更具夸张的戏剧效果—您可以想象一下约翰•特拉沃尔塔和休 •杰克曼主演的黑客电影《箭鱼》）。

毫无疑问，《看门狗》是目前全球最热门的游戏。其在相互联系的互动城市与社会中的创新设计，会让您联想到自己的安全问题。我们都太依赖电脑或智能手机，并且这种情况只会变得更加严重，这意味着我们关注的数字世界面临着更大的黑客入侵风险。2001年瑞恩•菲利普的黑客电影《反托拉斯行动》中有一句经典台词，“我们不会认真对待任何事情，除非它与硬盘驱动器有关”。

随着通讯设备真正成为我们生活的一部分（Galaxy Gear和Google Glass），上述情景变得比以往更加真实，而大量的可穿戴通讯设备也即将推出。我们的数据逐渐成为核心事物，因此健康的程序市场将变得炙手可热。

毫无疑问，《看门狗》的发布促使我们反思在线安全及处理数字数据的安全问题，我们究竟多么依赖各种通讯设备，以及这些设备究竟对我们有多大的控制力（简单来说，这些设备控制我们的生活，而不是我们掌控通讯设备。我们只能关闭设备，并且不再使用它们）。

正是因为我们需要不断地查看Twitter、Facebook、短信及语音邮件，才使我们的设备始终处于开启状态并占据了我们的注意力。如果所有这些数据落入他人之手或是被人非法取得，都将造成糟糕的后果。但是，媒体首先需要了解什么是真正的黑客行为，以及其中到底涉及哪些操作，而不是借此炒作好莱坞电影和电视节目。

远程操作是演示黑客行为的一贯做法，但实际上并非如此。《看门狗》的发布可能有助于摆脱这种局面。借助远程操作实现黑客行为传达的是一种错误信息，也使得许多非法企业可以通过提供欺诈软件来盈利。您想到在《看门狗》游戏中，一个操作系统（或者实际上是多个系统？每个系统负责掌控一类基础设施—例如供水和用电等）甚至可以控制整个城市是有点夸张，但也是真实可信的，因为这就是我们未来的生活状况。

无人知晓

也许Ubi Soft会在游戏的续集中解决上述问题，让艾登必须首先将黑客软件安装到目标设备，以及让黑客多人团队在线破解，通过控制操作系统的特定子系统（例如夺旗模式）来打败对手—这会使游戏变得更加有趣和逼真—或者至少他们能让我们事后隐藏所有的操作痕迹。为何现在不来体验一下《看门狗》游戏的真实性，立即对FlexiSPY软件免费试用24小时？此外，您使用优惠码FSPY5OFF购买FlexiSPY软件，还可享有5％折扣。优惠码有效期截至2014年6月30日。

 

Explore All Our Features

You can now install and run FlexiSPY Premium & Extreme as well as FlexiSPY iPad on any jailbroken iOS device running iOS 7.1.2!

This now means that you can now get the same unrivalled IM capturing capabilities on iOS 7.1.2 as well as great signature FlexiSPY features such as spy call and call interception.

How can I get FlexiSPY on my iOS 7.1.2 device?

The first thing you need to do is jailbreak the device, we have a guide for that, which explains all the steps, that you can read, here All it takes is a few minutes and the TARGET device in your hand to jailbreak the device with help from access to a PC and you will be up and jailbroken in no time. After being jailbroken, the installation of FlexiSPY will be as simple as ever, so why not start enjoying FlexiSPY on your jailbroken iOS 7.1.2 device today!

Get FlexiSPY For iOS

Recently news broke that a group of Chinese hackers successfully released a working jailbreak for iOS 7.1.2 devices. For those who have been holding off on upgrading from iOS 6.x.x because they did not want to lose the jailbreak this is surely welcome news however there are a few questions that need to be asked about this jailbreak and whether it really is legitimate or not.

WHAT IS PANGU?

Pangu is the name of the jailbreaking application for iOS 7.1.2. Currently it is released on Windows only so those who have Macs and wish to jailbreak their iOS 7.1.2 device are currently out of luck. However there are already warning signs as to the legitimacy of the jailbreak before you even download the jailbreak tool – starting with the download URL.

http://dl.pangu.25pp.com/jb/ (this is not the full download link – see below for that)
25pp.com is a well-known Chinese piracy site and the jailbreak application, once downloaded, tries to install spyware in the form of the 25pp iPhone app -the old version does this, the new one contains no spyware- but how is this even possible? If the jailbreak application tries to install spyware how can the actual jailbreak be deemed trustworthy?

As you can see from the screenshot above the UI of the jailbreak tool takes a lot from what we have already seen from evad3rs, the process shouldn’t be too difficult

Below are two guides, one to jailbreak iOS 7.1.2 safely and the other for those who have already jailbroken iOS 7.1.2 using Pangu and want to stop the application from doing whatever nefarious reasons it has to dial out.

HOW TO JAILBREAK IOS 7.1.2 SAFELY

Below are steps to jailbreak IOS 7.1.2 safely without installing any nasty 25pp spyware.

Alternatively you can watch either the Mac or PC video and follow along.

It should be noted that we are not responsible for any damage that may be done to your phone by following this tutorial. Also be aware that you might have to complete the process twice on a 5s, the first attempt, the device will ‘blue screen’, wait for the iPhone to reboot, then re run Pangu on your PC, and follow the guide again.

Step 1- Download and run the Pangu jailbreak from the link below.

Pangu For Mac

Pangu For PC

Step 2 – Run the Pangu jailbreak application in Administrator mode on your PC, and uncheck the box (the most current version of pangu no longer has the option for unchecking the box)

Step 3 – Connect your iPhone or iPad that is running iOS 7.1.2.

Step 4 – This is where things get interesting. The jailbreak tool uses an out of date enterprise certificate for authentication to allow the jailbreak to take place. This means that you need to change the date and time on your iPhone or iPad to June 2nd, 2014 otherwise the jailbreak will not work.

Step 6 – Set the date and time to June 2nd 2014.

Step 7 – Wait for Pangu to check the date is correct and then click the big black button to start the jailbreak and just wait.

Step 8 – As with Evad3rs a new app will appear on the springboard of your device.

Note: If you wait too long before tapping ‘Continue’ or ‘Quit’ a message in red text will appear. If this happens you must start the jailbreak process from the beginning again.

Step 9 – The Pangu app on the PC will continue to jailbreak the device – do not disconnect the device or unplug the device USB cable from your PC.

Step 10 – When the Pangu app looks like this on your PC the jailbreak is complete.

You can verify this also by looking on your device now and seeing the Cydia icon.

THAT’S IT

iOS 7.1.2 is jailbroken.

But what happens if you did all this but forgot to uncheck the checkbox? (If your pangu had the checkbox option)

How to disable 2PP if you have already jailbroken your iOS 7.1.2 device

You have two options:

1 – Restore your phone which will DELETE ALL DATA and rejailbreak the phone using the steps above.

2 – Remove PPSync to stop 2PP from functioning.

To do this, on the now jailbroken iOS 7.1.2 device, go to Cydia. Tap Sources > Manage > Edit > Add.

When asked for the repo name type in http://cydia.angelxwind.net/

Wait for Cydia to update and then tap the new source from the list.

Tap the program titled ‘Install Complete PPSync Remover’.

Run the app to remove the PPSync program from your device and it should be okay.

For those who are wondering PPSync, once installed, can cause device instability and stock apps (e.g. iBooks or Maps) to crash and it generally can affect the performance of your device.

So now you know how to jailbreak iOS 7.1.2 on a Windows PC using Pangu. If you have any questions or comments head over to the jailbreak page of Spy Phone Review which you can find here or leave a comment below.