For many of us, customization is the key to getting the most out of our devices. But taking that to the extreme by jailbreaking or rooting your device can lead to unintended consequences. It pays to be aware of the security and privacy trade-offs involved in bypassing manufacturer restrictions.  

What does jailbreaking or rooting mean?

Simply put, both jailbreaking and rooting describe almost the same thing — gaining administrator-level access to a device and its operating system (OS). However, there are some technical differences between the two, since, in Apple’s case, you have to deliberately bypass existing security layers to “jailbreak” a device (hence the name), while, for Android, you’re modifying the underlying core software architecture rooting it.

Why do people jailbreak or root their devices?

There are multiple reasons why people would either jailbreak or root their devices. In short: because it means more choice. That is, choice about:

  • Which apps you can download. This is particularly liberating for iOS users that are often restricted to the Apple App Store in specific regions.
  • The look and feel of the device, which can be tweaked to optimize performance and appearance.
  • Accessing unavailable tools and features.
  • Removing bloatware — apps that you don’t use, but which take up valuable resources and memory.
  • Changing carriers that you may be locked in to.

How jailbreaking/rooting impacts devices

The U.S. National Institute of Standards and Technology (NIST) warns that jailbreaking or rooting a device “significantly degrades its security architecture.” Here’s how:

Bypassing security measures

You may inadvertently disable important security measures such as App Sandboxing, which restricts what third-party apps can access on your device. Other features that may be bypassed include Secure Boot, Data Execution Prevention, and various controls that check for tampering or modification of files and apps.

Exposing the device to malware and exploits

Because you’re free to download apps from any source, you increase the risk of encountering unvetted software that may contain malware or be riddled with vulnerabilities that hackers could exploit. There have been cases of malware designed specifically to target jailbroken devices. And, if attackers can exploit your root-level permissions, they may be able to gain complete control of the device more easily.

Expanding the attack surface

Jailbreaking or rooting might alter network configurations, and unlock system and OS access, potentially providing attackers with more entry points to your device.

Undermining the security update process

Jailbroken/rooted devices will also typically not receive automatic updates from the manufacturer. Over time, this means your device will be running less-secure software with known vulnerabilities that hackers could exploit.

What are the risks of jailbroken or rooted devices?

The result of these security issues could be wide-ranging. The impact on your device, data, and even finances could include:

Privacy risk and unauthorized access

Jailbreaking/rooting could cause an elevated risk of attackers exploiting vulnerabilities in your device and/or using malware to steal sensitive personal information, account credentials, and details of your contacts.

Financial risks

Adversaries might use the credentials they find on your device to access highly sensitive payment information or try to hijack your banking and crypto apps - draining them of funds.

Network and remote attacks

If your device is running a less-secure operating system, it will also be more exposed to the risks posed by remote and network-based attacks, such as remote code execution and man-in-the-middle attacks. The risk is particularly acute if you log on to unsecured public Wi-Fi or malicious hotspots masquerading as legitimate hotspots. 

System and performance issues

Jailbroken or rooted devices don’t just pose security risks. Making unauthorized modifications and downloading previously restricted apps may affect device performance, degrade the battery, or even brick your smartphone

Understanding the real-world impact of jailbreaking/rooting
These aren’t theoretical risks. There’s a growing body of real-world evidence that may make you think twice before jailbreaking your device. For example:
  • In 2015, malware hidden in apps on Cydia, a third-party app store for jailbroken devices, compromised 250,000 such devices. It was able to steal passwords, buy apps without the users’ permission, and effectively hold them for ransom.
  • A year earlier, the Reddit Jailbreak community discovered malware targeting jailbroken iPhones, dubbed as “Unflod Baby Panda,” capable of stealing account credentials.
  • Zimperium data shows that rooted devices are more than 3.5 times more likely to be targeted by mobile malware.

How to stay secure even with a jailbroken or rooted device

The good news is that, even if you decide to jailbreak or root your device, there are ways to mitigate the worst security risks. Consider:

Sticking to trustworthy apps

Only install applications from official sources, which means the Apple App Store or Google Play. This will reduce the chances of downloading unvetted or malicious software. You can also confirm the integrity of software through two additional means:

  • Checksums act like a digital fingerprint on a file, and can be used to check if it has been corrupted or tampered with. However, they could theoretically be replaced by a malicious actor
  • Digital signatures can be used to verify the integrity and authenticity of a file, possibly in combination with checksums
  • Alternatively, those who’d like to break the bonds imposed by manufacturers to source alternate apps should visit vetted third-party app stores, such as F-Droid (for Android) or AltStore (for iOS), while still exercising caution and only sourcing legitimate and well-reviewed apps.

Taking extra security steps

  • Install robust anti-malware from a trusted provider on your device — be sure to check that it can still operate even on modified systems.
  • Use a reliable VPN, which will encrypt and secure the device’s internet connection. It will help limit man-in-the-middle and unsecured Wi-Fi threats, and prevent attackers from tracking or targeting your device.

  • Use multi-factor authentication (MFA) on your most sensitive accounts to mitigate the risk of password theft and unauthorized remote access. An authenticator app is the most secure option.
  • Use encrypted storage (or secure folders) on the device so that, even if it is accessed, it will be useless to attackers, and the apps will remain unmodifiable.

Regularly backing up

  • Maintain regular backups to restore the device, if compromised.
  • Consider using secure cloud services or encrypted local backups.

Monitoring and performing maintenance

It pays to stay informed about any new vulnerabilities or live attack campaigns that may impact jailbroken/rooted devices. You should also consider reviewing your installed apps and system modifications occasionally, to check for anything unusual and reduce the device’s attack surface.

Thinking twice about jailbreaking/rooting

Jailbreaking or rooting a device is a trade-off, and every person is different. It may be worth deciding if the benefits in your case outweigh the significant security risks.

Expert tips and insights

“With great power comes great responsibility — true for Spider-Man and anyone with a jailbroken or rooted mobile device. While our research shows that most malware does not require elevated privileges, root-level access opens otherwise nonexistent attack vectors and broadens the range of malicious activities for attackers. As core protections are bypassed, certain financial and banking apps will not run on such modified devices to maintain higher security standards. Notably, there have been cases of stalkerware leveraging root or jailbreak privileges to infiltrate apps like WhatsApp, and steal chats and sensitive personal data. Although the freedom and customization gained from jailbreaking or rooting may be tempting, disabling any cybersecurity features increases your exposure to cyber threats. Responsible users can balance these dangers with specialized security tools and vigilant maintenance. Yet, ongoing awareness remains vital in today’s ever-evolving threat landscape.”

-          Lukáš Štefanko, ESET Malware Researcher

The evolving threat and mobile device landscape

Mobile security innovations

The security community continues to produce innovative new solutions to help mitigate some of the risks outlined above. For example:

  • Firejail is a Linux tool that enables you to run applications in a sandbox environment on rooted devices.
  • ·     SELinux in Enforcing Mode can limit app access to system resources, up to a point.

However, it’s worth noting that these may require a degree of technical know-how to properly configure. Additionally, manufacturers are building new features designed to make it harder to jailbreak or root devices through stronger jailbreak detection, secure boot, and other capabilities.

Low-hanging fruit

On the other side, cybercriminals will continue to go after the “low-hanging fruit” — devices running unsecured OS versions and weakened security protections that provide a clear pathway for root access. They may intercept network traffic, collect device info from malicious hotspots, or even build root/jailbreak detection into malware, to find modified devices.

So, if you decide to jailbreak or root your device, be warned: It could make you a target. 

If you’re serious about protecting your Android device, check out ESET Mobile Security.

If you want complex protection of smartphones, personal computers, and commonly used smart devices, choose ESET HOME Security Ultimate. It comes with multiple tools, adding extra layers of protection for both iOS and Android, such as VPN, and Identity Protection

get eset home security ultimate

Frequently asked questions 

Is it illegal to jailbreak your phone?

Jailbreaking your phone is not illegal, but it can void your warranty and expose your device to security risks. Keep in mind that using jailbreaking to pirate apps or violate copyright laws is illegal.

What happens after you jailbreak your phone?

After jailbreaking your phone, you can install unauthorized apps and customize your device beyond factory restrictions, but it also becomes more vulnerable to malware and performance issues.

What if your phone is jailbroken?

If your phone is jailbroken, it may miss out on important updates and security patches, and you might encounter compatibility issues with certain apps.

Is it easy to jailbreak your phone?

Jailbreaking your phone can be relatively easy with the right tools and instructions, but it requires caution as improper steps can render your device inoperable.

Can jailbreaking or rooting impact my warranty?

Apple takes a dim view of “unauthorized modifications” of iOS, warning that doing so will violate your Software License Agreement, and that it could therefore deny service for any such device. The situation with Android devices is less clear, and it may depend on the manufacturer and your location.