Ios Tcc Lets Hacker Feed Reach Undocumented Liverpool Service
Posted22 days ago
Securitystory
heatednegative
Debate
80/100
Ios SecurityTcc VulnerabilityUndocumented System Services
Key topics
Ios Security
Tcc Vulnerability
Undocumented System Services
I noticed a TCC issue in iOS 26.1 where the Hacker Feed app (com.kentoh.hackerfeed) gets access to an undocumented service called kTCCServiceLiverpool without any permission prompts.
This was observed on my iPhone 14 Pro Max, and while the exact behavior may vary on other devices or iOS versions, it clearly demonstrates a framework-level flaw. The developer isn’t doing anything wrong... this looks like a mistake in iOS itself.
A mainstream HN reader exposes a hidden TCC gap that allows trusted apps to inherit permissions to undocumented system services... #irony
Discussion Activity
No activity data yet
We're still syncing comments from Hacker News.
Generating AI Summary...
Analyzing up to 500 comments to identify key contributors and discussion patterns
ID: 46240434Type: storyLast synced: 12/12/2025, 3:10:16 AM
Want the full context?
Jump to the original sources
Read the primary article or dive into the live Hacker News thread when you're ready.
Discussion hasn't started yet.