Help/Support Trouble signing Cercube with paid dev AppleID iOSGods app

i0s_tweak3r · December 21, 2020

I used an app specific password (twice- two different ones) trying to install Cercube with my dev account with the iOSGods app but it keeps giving me an error saying something went wrong, if it persists to ask for support.

(I don’t have a PC to use sideloadly)

My UDID was correct. I checked that in iTunes and rechecked. I used a different bundleID each time. Does the Cercube hack require you use the original BundleID of YouTube?

Also, is there any way to download the ipa so I can use Impactor if it won’t work with the iOSGods app?

Rook · December 21, 2020

Hello,

Please PM me regarding this as we have to discuss some private information regarding your Apple ID in order to troubleshoot.

i0s_tweak3r · December 21, 2020

34 minutes ago, Rook said:

Hello,

Please PM me regarding this as we have to discuss some private information regarding your Apple ID in order to troubleshoot.

No worries. Thanks.

I’ll get in touch tomorrow. A probably unrelated issue, but as soon as I hit install the first time I immediately got a security alert (from iOS) saying several of my accounts were in a known data breach, so right now I’m having to change a million passwords.

Some of them without two factor were already changed by whoever breached the accounts when I went to change them, so it was probably just weird timing and not a security issue with the app. I’ve been lazy with passwords for too long and now am paying the price for it.

Rook · December 21, 2020

4 minutes ago, i0s_tweak3r said:

I’ll get in touch tomorrow. A probably unrelated issue, but as soon as I hit install the first time I immediately got a security alert (from iOS) saying several of my accounts were in a known data breach, so right now I’m having to change a million passwords.

That's weird, since Apple Developer Program only works with App-Specific passwords, so your Apple ID will remain safe. You can get in touch with me regarding this too.

I did not know iOS gives out those kind of security alerts.

0xNoctis · December 21, 2020

Thats the same notification i got a couple days ago saying my IOS gods passcode was known in a data breach had to change emails etc

Notification Appeared cause i had my passcodes saved in safari Auto Fill

i0s_tweak3r · December 26, 2020

On 12/20/2020 at 11:51 PM, Rook said:

That's weird, since Apple Developer Program only works with App-Specific passwords, so your Apple ID will remain safe. You can get in touch with me regarding this too.

I did not know iOS gives out those kind of security alerts.

It was the first I saw of them. It really rubbed in my face how lazy I was about re-using passwords. If someone breached one or two accounts they could guess like 70 more. With the huge hack the government went through as well as most big companies recently that e1 has been so hush hush about when it comes to specifics, I don’t think it’s too hard to believe at least one of those companies had my data breached, and that’s why iOS started giving warnings.

I’ve only gotten them on my non-jailbroken iOS 14.2 device. I never got warnings on my jailbroken 7+ on 14.2, it was just weird timing that I was on the app when the warning popped up. There’s a lot more plausible ways it could have been breached, too. My Apple ID wasn’t a very strong password. They don’t require the auto generated strong passwords except for the app specific ones..

i0s_tweak3r · December 26, 2020

On 12/20/2020 at 11:53 PM, Noctisx said:

Thats the same notification i got a couple days ago saying my IOS gods passcode was known in a data breach had to change emails etc

Notification Appeared cause i had my passcodes saved in safari Auto Fill

Yeah I keep most of my passwords in there. Safari is full of exploit potential (remember they’ve had several jailbreakme web exploits, and that’s just what was shared with the community).

I’m not sure where the auto-saved passcodes are stored, or if they are more secure, I just know I can’t keep track of like 70 some passwords on like 9 devices without using a password service of some kind.

0xNoctis · December 26, 2020

Just now, i0s_tweak3r said:

Yeah I keep most of my passwords in there. Safari is full of exploit potential (remember they’ve had several jailbreakme web exploits, and that’s just what was shared with the community).

I’m not sure where the auto-saved passcodes are stored, or if they are more secure, I just know I can’t keep track of like 70 some passwords on like 9 devices without using a password service of some kind.

Pretty sure they are stored in settings somewhere

i0s_tweak3r · December 26, 2020

5 minutes ago, Noctisx said:

Pretty sure they are stored in settings somewhere

Possibly Safari’s user defaults? That would be super easy to steal them if so, unless they are encrypted as data. That would make it a little harder. I know it’s not in the main [NSUserDefaults standardUserDefaults] that you can find in FLEXing or Filza. I’ve gone through that several times exploring settings that were hidden, but available on the plist w/o even building a tweak.