Simple hack bypasses iOS passcode entry limit, opens door to brute force hacks [u]

Posted:
in iPhone edited June 2018
A security researcher recently discovered a flaw in Apple's iOS that allows anyone with a Lightning cable the ability to bypass an iPhone or iPad's passcode attempt limit, opening the door to brute force attacks.

GrayKey
GrayKey forensic tool. | Source: MalwareBytes


Matthew Hickey, co-founder of security firm Hacker House, uncovered a method of bypassing a ten-attempt passcode restriction designed to thwart brute force hacks on locked iOS devices, ZDNet reports.

Apple introduced system-wide encryption with iOS 8 in 2014, a security measure that was later backed by a special hardware safeguard called the secure enclave processor. First deployed in iPhone 5s to perform cryptographic operations and store encrypted Touch ID biometric data, secure enclaves now appear in all modern iOS devices to protect against unwarranted intrusions, silo financial data associated with Apple Pay, conduct biometric matching and more.

Combined with the latest iOS software, the secure enclave is able to shut down brute force attacks by delaying multiple incorrect passcode attempts. Specifically, the operating system pauses input after four consecutive attempts, the first starting at one minute and running to one hour for the ninth error. Users can further protect onboard data by enabling a feature that performs a system wipe after ten consecutive failed attempts.

Hickey, however, says the security protocol can be bypassed by sending passcode entries en masse over Lightning. Transmitting a string of passcodes via keyboard input triggers an interrupt request that takes precedent over all other device operations, including the data erase feature.

"Instead of sending passcodes one at a time and waiting, send them all in one go," Hickey said. "If you send your brute-force attack in one long string of inputs, it'll process all of them, and bypass the erase data feature," he explained.

The attack is slow going, with a tethered device taking about three to five seconds to ingest each code, but it has been proven to work on both four- and six-digit passcodes. A six-digit code, however, could take weeks to crack.

Hickey's method might be rendered obsolete when iOS 12 debuts. The upcoming iOS version includes a "USB Restricted Mode" that effectively disables hardwired USB data connections after a predetermined time period. A catchall response to USB attack vectors employed by hackers and digital forensics firms, the feature requires users enter a passcode when attempting to transfer data to or from a USB accessory connected to an iPhone that has not been unlocked within the last hour.

The new security feature also frustrates efforts from digital forensics firms like GrayShift, which markets a relatively inexpensive iPhone unlocking solution called GrayKey to law enforcement agencies. Reports suggest GrayShift has already defeated the feature, though how it has managed to do so is unclear.

Apple earlier this month confirmed USB Restricted Mode will disrupt unwarranted iPhone access attempts by hackers and governments that do not afford their citizens the same protections as U.S. laws.

Update: Apple has since disputed Hickey's claims, saying the supposed iOS vulnerability is the result of erroneous testing.
«13

Comments

  • Reply 1 of 50
    SoliSoli Posts: 10,038member
    Use the full keyboard for your passcode! Even add a simple long press character to make it crazy hard to crack without invoking much of a hassle for you.
    claire1baconstangracerhomie3lostkiwiAlex1Njony0
  • Reply 2 of 50
    gerardgerard Posts: 83member
    This flaw probably why Gray key stated they have a workaround. Hopefully Apple will fix this so called simple but effective hack. 
    SpamSandwichwatto_cobra
  • Reply 3 of 50
    dewmedewme Posts: 5,679member
    I’m generally sympathetic about security issues that exist because the designers and developers at a much earlier point in time had no compelling reason to consider a risk that was unknown at the time. But the Lightning brute force attack vector is simply bad design, plain and simple. It violates even the most elementary design-for-security (DfS) prescriptions. The Lightning port is by design both a point of ingress and a point of egress from the device. There is no logical reason why the designers and engineers working under a DfS umbrella would not have identified the Lightning port, upstream & downstream processing related to the Lightning port, including all exception handling, scheduler impacts, buffers/caches/queues, etc., (all the usual security subjects) as part of their design process. But everyone makes mistakes and Apple will have to fix this one pronto so they can free up resources and bandwidth to prepare for the next one. 
    baconstangbrian greenolsmuthuk_vanalingamAlex1Njony0
  • Reply 4 of 50
    mac_128mac_128 Posts: 3,454member
    gerard said:
    This flaw probably why Gray key stated they have a workaround. Hopefully Apple will fix this so called simple but effective hack. 
    Hopefully they fix it in iOS 11 since any device which won’t run 12 will be vaunerable. I’ll need to go back to any older iOS device I’m still using which won’t run iOS 11 or 12 and use the longest password allowed. That’s gonna be a real pain, as I currently use 4-digit passcodes for easy access without Touch ID. But it’s probably a good idea for any device even running iOS 12 since there’s a one-hour window in which someone could steal a phone and get lucky.


    edited June 2018
  • Reply 5 of 50
    SoliSoli Posts: 10,038member
    mac_128 said:
    gerard said:
    This flaw probably why Gray key stated they have a workaround. Hopefully Apple will fix this so called simple but effective hack. 
    Hopefully they fix it in iOS 11 since any device which won’t run 12 will be vaunerable. I’ll need to go back to any older iOS device I’m still using which won’t run iOS 11 or 12 and use the longest password allowed. That’s gonna be a real pain, as I currently use 4-digit passcodes for easy access without Touch ID. But it’s probably a good idea for any device even running iOS 12 since there’s a one-hour window in which someone could steal a phone and get lucky.
    I thought they required a 6-digit password years ago? For something you don't have to input often I don't understand why people aren't using the complexity of the iOS virtual keyboard for faster and hyper-secure password where only 4 charcters can be much as 1.9 BILLION possible combinations. Your PIN only gets you 10K.
    Alex1N
  • Reply 6 of 50
    Soli said:
    Use the full keyboard for your passcode! Even add a simple long press character to make it crazy hard to crack without invoking much of a hassle for you.
    @Soli, I have seen you mention this a few times in these forums. Could you please explain this a little more? I have a 6-digit password (numeric, though, which I guess I need to change), so I would like to try your suggestion. But, I am not sure I understand what 'use the full keyboard' and 'add a simple long press character' mean. I use an iPhone 6, running iOS 10.x.
    watto_cobra
  • Reply 7 of 50
    SoliSoli Posts: 10,038member
    Soli said:
    Use the full keyboard for your passcode! Even add a simple long press character to make it crazy hard to crack without invoking much of a hassle for you.
    @Soli, I have seen you mention this a few times in these forums. Could you please explain this a little more? I have a 6-digit password (numeric, though, which I guess I need to change), so I would like to try your suggestion. But, I am not sure I understand what 'use the full keyboard' and 'add a simple long press character' mean. I use an iPhone 6, running iOS 10.x.
    1) By full keyboard I mean switching from the numbered to the incompletely-named alphanumeric keyboard in Settings » Touch ID & Password » Change Passcode » Passcode Options » Custom Alphanumeric Code.

    2) If you use the "typical" character palette of upper case letters (26), lower case letters (26), numbers 10), you have 72 options per character, but why not use all those "special characters" that are also available which I think bring you another 35 options for a total of 107 options, which is more than any website I've seen which only give you a handful of extra character options based on their weak sense of security and the minimal effort they've had to put in so that the special characters don't mess with their database setup.

    That means a 6-character passcode would be 107^6 for a total of 1.5 TRILLION possible combinations compared to your 6-digit PIN which is 10^6 for a total of 1 MILLION options. It really doesn't take much longer to input and because of Touch ID and Face ID not requiring you to unlock with your passcode constantly there's no reason not to have a more secure one.

    3) If non-alphanumerics for passwords, like punctuation and other non-alphanumeric characters, are referred to as "special characters" I've deemed the much richer palette of characters available for the long-hold on the iOS virtual keyboard as "very special characters." For example, if you hold down the 'a' key on at the American English iOS keyboard (same for macOS, btw), you get the options (à, á, â, ä, æ, ã, å, ā). These are all valid for Apple OS passwords and they're all unique Unicodes so they won't be registered just the letter 'a'. But not all have so many options on the long-press. The ampersand (&), for example, only has the section sign (§) as an option.

    By my last count—as I recall—of the American English iOS keyboard there are 210 options. That means that a 4-character passcode would be 1.944 BILLION options. Moving to 6-characters it's now 85.8 TRILLION. 


    PS: I'll also reiterate what having emoji as options for password could do. Perhaps not all characters could be used because they're too similar in look, and cross platform characters can look very different, but even a basic array of pictograms could be useful. Some people could remember them better by creating a story from them as their password, even if just interjecting one or two. This could increase the complexity of the character palette to around 1000 characters—or BASE-1000—which would make these brute force attacks virtually impossible as they stand now, even for very short passcodes. A 4 character passcode that was not limited to just numbers and letters would have 1 TRILLION possibilities with just 4 characters, which the user could quickly type in. Move that to 6-characters and you now have 1 QUINTILLION. I don't expect to see emoji added for a long time, but I do see the benefit of allowing them to be used in some fashion.
    edited June 2018 Rayz2016CelTanCelTanfrantisekadybadybolsmuthuk_vanalingamavon b7tgr1
  • Reply 8 of 50
    @Applemagic, These options have been in iOS for a while; my examples are from iOS 9. iOS 10+ might be slightly different but similar options are available.

    When you change or set up your passcode, you get a button that says Passcode Options under the passcode entry field. When you tap that, you get a choice of Custom Alphanumeric Code, Custom Numeric Code or 6-Digit Numeric Code.

    1. If you enter a Custom Alphanumeric Code you can use the entire keyboard and have a code as long as you wish, using letters, numbers, and special characters, terminated by ENTER.

    Note that the full keyboard is available, so you can put in accents, umlauts, and any other special characters. That is what @Soli meant by a simple long press character. I don't know if emoji work.

    2. If you enter a Custom Numeric Code you can type in as many numeric digits as you wish, but will have to hit ENTER at the end of the code. The benefit of this is you get the numeric keypad to type in your code, which is less fiddly to use than the alphanumeric keyboard.

    3. 6-Digit Numeric Code uses the numeric keypad, but you don't need to hit ENTER because it knows you are putting in 6 digits. (Also realize that anyone trying to crack your code ALSO knows you only have 6 digits.)

    Highest security is a long custom alphanumeric code, but it's a PITA to type in if you don't have Touch ID or something like that.

    edited June 2018 SoliAlex1Nwatto_cobrajony0
  • Reply 9 of 50
    SoliSoli Posts: 10,038member
    Highest security is a long custom alphanumeric code, but it's a PITA to type in if you don't have Touch ID or something like that.
    Longer is better should be looked at when considering the number of character options available for a given system. That's why a longer PIN can be considerably less secure than a shorter, complex passcode that uses every type of character. Grey Key can crack a 6-digit PIN 9x faster than can a 3-character passcode using the full iOS keyboard as it stands today (assuming it's programmed to do be able to do it at all), and because you can make it shorter, it could even save you time typing it in over a longer passcode with diminutive BASE.

    As you say, it would be a PITA if not for Touch ID and Face ID, but we have that luxury of no longer having to input our PINs every time we unlock our devices.


    PS: I'm enjoying the Dan Brown's latest novel "Origin" but I'm bothered that the protagonist was able to use the fingerprint of someone to unlock a smartphone and then go into settings to disable the fingerprint check all security without any additional security checks. For that don't know, youu can't even access that part of Settings without knowing the passcode. I'm not sure how he could've moved the story forward but it felt lazy.
    edited June 2018 JaiOh81netmageAlex1N
  • Reply 10 of 50
    Rayz2016Rayz2016 Posts: 6,957member
    Soli said:
    Soli said:
    Use the full keyboard for your passcode! Even add a simple long press character to make it crazy hard to crack without invoking much of a hassle for you.
    @Soli, I have seen you mention this a few times in these forums. Could you please explain this a little more? I have a 6-digit password (numeric, though, which I guess I need to change), so I would like to try your suggestion. But, I am not sure I understand what 'use the full keyboard' and 'add a simple long press character' mean. I use an iPhone 6, running iOS 10.x.
    1) By full keyboard I mean switching from the numbered to the incompletely-named alphanumeric keyboard in Settings » Touch ID & Password » Change Passcode » Passcode Options » Custom Alphanumeric Code.

    2) If you use the "typical" character palette of upper case letters (26), lower case letters (26), numbers 10), you have 72 options per character, but why not use all those "special" characters that are also available which I think bring you another 35 options for a total of 107 options, which is more than any website I've seen which only give you a handful of extra character options based on their weak sense of security and the minimal effort they've had to put in so that the special characters don't mess with their database setup.

    That means a 6-character passcode would be 107^6 for a total of 1.5 TRILLION possible combinations compared to your 6-digit PIN which is 10^6 for a total of 1 MILLION options. It really doesn't take much longer to input and because of Touch ID and Face ID not requiring you to unlock with your passcode constantly there's no need to have a more secure one.

    3) If non-alphanumerics for passwords, like punctuation and other non-alphanumeric characters, are referred to as "special characters" I've deemed the much richer palette of characters available for the long-hold on the iOS virtual keyboard as "very special characters. For example, if you hold down the 'a' key on at the American English iOS keyboard (same for macOS, btw), you get the options (à, á, â, ä, æ, ã, å, ā). These are all valid for Apple OS passwords and they're all unique Unicodes so they won't be registered just the letter 'a'. But not all have so many on the long-press. The Ampersand (&), for example, only has the section sign (§) as an option.

    By my last count—as I recall—of the American English iOS keyboard there are 210 options. That means that a 4-character passcode would be 1.944 BILLION options. Moving to 6-characters it's now 85.8 TRILLION. 


    PS: I'll also reiterate what having emoji as options for password could do. Perhaps not all characters could be used because they're too similar in look, and cross platforms chracters can look very different, but even a basic array of pictograms could be useful. Some people could remember them better by creating a story from them as their password, even if just interjecting one or two. This could increase the complexity of the character palette to around 1000 characters—or BASE-1000—which would make these brute force attacks virtually impossible as they stand now, even for very short passcodes. A 4 character passcode that was not limited to just numbers and letters would have 1 TRILLION possibilities with just 4 characters, which the user could quickly type in. Move that to 6-characters and you now have 1 QUINTILLION. I don't expect to see emoji added for a long time, but I do see the benefit of allowing them to be used in some fashion.
    Post of the month. 
    Soliradarthekatmuthuk_vanalingamtgr1roundaboutnowAlex1Njony0
  • Reply 11 of 50
    randointernetterandointernette Posts: 3unconfirmed, member
    mac_128 said:
    gerard said:
    This flaw probably why Gray key stated they have a workaround. Hopefully Apple will fix this so called simple but effective hack. 
    Hopefully they fix it in iOS 11 since any device which won’t run 12 will be vaunerable. I’ll need to go back to any older iOS device I’m still using which won’t run iOS 11 or 12 and use the longest password allowed. That’s gonna be a real pain, as I currently use 4-digit passcodes for easy access without Touch ID. But it’s probably a good idea for any device even running iOS 12 since there’s a one-hour window in which someone could steal a phone and get lucky.


    Any device running iOS 11 can run iOS 12. They announced this at WWDC. Rest easy.
    Rayz2016mac_128bb-15netmageAlex1NSpamSandwich
  • Reply 12 of 50
    SoliSoli Posts: 10,038member
    Off Topic: Password Managers have come along way over the last decade. I'd even say that we've reached a plateau with their robustness, stability, and intelligence when it comes to checking for simple passwords, duplicate password, vulnerable passwords (a new 1P feature), and letting you know which websites have been a victim of hacks and that have changed their SSL Certificate, but the one thing that is still lacking for the sake of convenience is having their password generator create the most complex password possible for that website within the parameters set forth by that company's security team.

    Often, the websites will tell the user what the limitations are; like the minimum length, the types of characters allowed, and minimum number of different character types that must be used. That's fine, but password generators don't read that data so you're left with having to fiddle with the slider, adjust other various settings, and even do manual replacements of special characters that aren't allowed for ones that are in order to satisfy the requirement. For me, this isn't a huge deal, but I know it can be a daunting task for those that still don't fully grasp the difference between a password manager and password generator… which is surprisingly more common than you may realize if you're only communicating with people on tech sites.

    Furthermore, one pet peeve of my mine is that most websites will state a minimum number of characters, but not a maximum number. 1Password's slider goes to 64-characters, which I use quite well with Dropbox, Google, and other websites built well. Sometimes you won't even get an error when you input a password that is too long, but you go to sign in and it fails, so then you're left with trying again with one less character on each attempt until you find the length that it decided to truncate and save as your password in their system, which you have to now save manually in your password manager.

    My solution for this is something along the lines of how robots.txt works. All password generators will be able to look at the read-only, passwords.txt file (for example) on any website's root to be able to see all the parameters by which a password must be made so it can create the most secure, randomized password possible without the user having to spend any time manually altering settings to make it work. Hopefully this would help those making websites to better understand the need for full transparency in their password criteria, help users create stronger passwords, and help users create unique passwords for each website.

    Example 1:
    Allow: Aa-Zz
    Allow: 0-9
    Allow: $-_.+!*'(),

    Example 2:
    Allow: Upper
    Allow: Lower
    Allow: Numbers
    Allow: $-_.+!*'(),

    Example 3
    Allow: ASCII
    Example 4:
    Allow: ASCII
    Allow: iOS
    Allow: Android
    Allow: Emoji_Level_01
    Example 5
    Allow: All
    Disallow: 3_Consecutive_Repeats   //Only allow a character to repeat twice.
    Disallow: 4_Total_Repeats   //Only allow a character to be used 3x in a password
    Ratio: 20%_Numbers   //Numbers can only account for no more than 20.0% of the number of characters (i.e.: In a 64 character password digits can only account for no more than 12 of the characters).

    Of course, the user would never have to worry about this. This would all happen in the background instantly. For security, password generators could easily be made to look for anything hinky, like a password.txt file that had been changed to make the password far too simple, which would indicate that the site had been compromised, but that would only work if the server that records the password was also comprised so I doubt that would be an attack vector at all for hackers.

    If the site doesn't use this so-called password.txt file then your password generator will make a randomized password like it does now.
    edited June 2018 muthuk_vanalingamlostkiwiAlex1N
  • Reply 13 of 50
    macikemacike Posts: 73member
    Even though the Supreme Court is forcing the Police to obtain a warrant before they can legally use tracking data, I understand that the Police can force you to unlock your device , if you use Touch-I.D. or Face ID. If you use a long passcode, and disable Touch ID and Face ID, wouldn't it give you a way to avoid this, unless a legitimate warrant was obtained? For example, if you had open l;liquor,appeared to be intoxicated, or had the smell of marijuana in your vehicle in a State where it wasn't legal, they would have probable cause, and if you allowed a search of your vehicle, and your iPhone was in the car, you have also given them the right to search/scan your iPhone. If you had Touch ID or Face ID activated, they could force you to unlock it.
  • Reply 14 of 50
    Soli said:
    Soli said:
    Use the full keyboard for your passcode! Even add a simple long press character to make it crazy hard to crack without invoking much of a hassle for you.
    @Soli, I have seen you mention this a few times in these forums. Could you please explain this a little more? I have a 6-digit password (numeric, though, which I guess I need to change), so I would like to try your suggestion. But, I am not sure I understand what 'use the full keyboard' and 'add a simple long press character' mean. I use an iPhone 6, running iOS 10.x.
    1) By full keyboard I mean switching from the numbered to the incompletely-named alphanumeric keyboard in Settings » Touch ID & Password » Change Passcode » Passcode Options » Custom Alphanumeric Code.

    2) If you use the "typical" character palette of upper case letters (26), lower case letters (26), numbers 10), you have 72 options per character, but why not use all those "special characters" that are also available which I think bring you another 35 options for a total of 107 options, which is more than any website I've seen which only give you a handful of extra character options based on their weak sense of security and the minimal effort they've had to put in so that the special characters don't mess with their database setup.

    That means a 6-character passcode would be 107^6 for a total of 1.5 TRILLION possible combinations compared to your 6-digit PIN which is 10^6 for a total of 1 MILLION options. It really doesn't take much longer to input and because of Touch ID and Face ID not requiring you to unlock with your passcode constantly there's no reason not to have a more secure one.

    3) If non-alphanumerics for passwords, like punctuation and other non-alphanumeric characters, are referred to as "special characters" I've deemed the much richer palette of characters available for the long-hold on the iOS virtual keyboard as "very special characters." For example, if you hold down the 'a' key on at the American English iOS keyboard (same for macOS, btw), you get the options (à, á, â, ä, æ, ã, å, ā). These are all valid for Apple OS passwords and they're all unique Unicodes so they won't be registered just the letter 'a'. But not all have so many options on the long-press. The ampersand (&), for example, only has the section sign (§) as an option.

    By my last count—as I recall—of the American English iOS keyboard there are 210 options. That means that a 4-character passcode would be 1.944 BILLION options. Moving to 6-characters it's now 85.8 TRILLION. 


    PS: I'll also reiterate what having emoji as options for password could do. Perhaps not all characters could be used because they're too similar in look, and cross platform characters can look very different, but even a basic array of pictograms could be useful. Some people could remember them better by creating a story from them as their password, even if just interjecting one or two. This could increase the complexity of the character palette to around 1000 characters—or BASE-1000—which would make these brute force attacks virtually impossible as they stand now, even for very short passcodes. A 4 character passcode that was not limited to just numbers and letters would have 1 TRILLION possibilities with just 4 characters, which the user could quickly type in. Move that to 6-characters and you now have 1 QUINTILLION. I don't expect to see emoji added for a long time, but I do see the benefit of allowing them to be used in some fashion.
    Thank you for taking the time to write such a detailed explanation. I am going to implement the suggestion right away. @All-Purpose Guru, thanks to you, too, for the additional details. Much appreciation and thanks to you both.
    SoliAlex1N
  • Reply 15 of 50
    GeorgeBMacGeorgeBMac Posts: 11,421member
    mac_128 said:
    gerard said:
    This flaw probably why Gray key stated they have a workaround. Hopefully Apple will fix this so called simple but effective hack. 
    Hopefully they fix it in iOS 11 since any device which won’t run 12 will be vaunerable. I’ll need to go back to any older iOS device I’m still using which won’t run iOS 11 or 12 and use the longest password allowed. That’s gonna be a real pain, as I currently use 4-digit passcodes for easy access without Touch ID. But it’s probably a good idea for any device even running iOS 12 since there’s a one-hour window in which someone could steal a phone and get lucky.


    As I understand it, any device running iOS 11 will run iOS12.
    As for running old, out dated versions of iOS, you're taking a lot more risks than this single one.   Apple fixes security bugs multiple times a year in every version of iOS -- so your outdated device has multiple vulnerabilities...
    mac_128
  • Reply 16 of 50
    wonkothesanewonkothesane Posts: 1,738member
    Soli said:
    mac_128 said:
    gerard said:
    This flaw probably why Gray key stated they have a workaround. Hopefully Apple will fix this so called simple but effective hack. 
    Hopefully they fix it in iOS 11 since any device which won’t run 12 will be vaunerable. I’ll need to go back to any older iOS device I’m still using which won’t run iOS 11 or 12 and use the longest password allowed. That’s gonna be a real pain, as I currently use 4-digit passcodes for easy access without Touch ID. But it’s probably a good idea for any device even running iOS 12 since there’s a one-hour window in which someone could steal a phone and get lucky.
    I thought they required a 6-digit password years ago? For something you don't have to input often I don't understand why people aren't using the complexity of the iOS virtual keyboard for faster and hyper-secure password where only 4 charcters can be much as 1.9 BILLION possible combinations. Your PIN only gets you 10K.
    Because generally people are lazy (which doesn’t stop them to make lots of demands at the same time). Hence FaceID. And honestly, I loved moving from a nerdy kind of guy in the long past who knew about how to setup routers, create safe passwords and backups etc. to totally enjoying “it just works”. (And being pissed off when ten it doesn’t ;)
    )

    lostkiwiAlex1N
  • Reply 17 of 50
    GeorgeBMacGeorgeBMac Posts: 11,421member
    Why all the fuss?

    The police, if they want, can search my phone.   Their biggest challenge would be boredom.  There's nothing there that would interest them.

    And for hackers, the only thing that would interest them is my credit card.   But, the instant they use it I will be notified and will call the credit card company to report the fraud.  Yes, I have other personal info on there, but hackers have already stolen that stuff and more...  And, for the garden variety hackers, Apple's current Find My iPhone features will enable me to wipe the phone anyway....

    I go back to what a security analyst told me decades ago: 
    "If a pro wants in, he'll get in.   The best security is to make it hard enough that he moves on to pick an easier target".
  • Reply 18 of 50
    SoliSoli Posts: 10,038member
    Why all the fuss?

    The police, if they want, can search my phone.   Their biggest challenge would be boredom.  There's nothing there that would interest them.

    And for hackers, the only thing that would interest them is my credit card.   But, the instant they use it I will be notified and will call the credit card company to report the fraud.  Yes, I have other personal info on there, but hackers have already stolen that stuff and more...  And, for the garden variety hackers, Apple's current Find My iPhone features will enable me to wipe the phone anyway....

    I go back to what a security analyst told me decades ago: 
    "If a pro wants in, he'll get in.   The best security is to make it hard enough that he moves on to pick an easier target".
    1) I'm not worried about law enforcement, per say, but I am concerned about the data on my device for financial gain, but LEOs are made up of humans that may or may not be ethical. My iPhone and Mac have the same personal data so I want them to be just as secure. Luckily Apple makes this a breeze.

    2) The first thing that someone might do if they stole your device is put it in Airplane Mode, turn it off (if that wasn't possible, or just stick it a bag that would block any RF that you could use to remotely wipe the device. Find My iPhone is a great feature, but it does have its limitations since it requires a handshake from Apple's servers to know to wipe itself.

    3) That security analyst is correct. If you're being targeted—like a celebrity might be—you're likely going to have data stolen, but if you're just part of the pack just don't be the slowest and weakest of the herd. For example, I shred every document at my house that contains personal data, but I don't burn it. If someone was really hell bent on getting that data they could piece to get all that confetti to find what I shred. It's all mundane, but there is info if one wanted to steal my identity, for instance. If I was a celebrity I'd be burning it.


    macike said:
    Even though the Supreme Court is forcing the Police to obtain a warrant before they can legally use tracking data, I understand that the Police can force you to unlock your device , if you use Touch-I.D. or Face ID. If you use a long passcode, and disable Touch ID and Face ID, wouldn't it give you a way to avoid this, unless a legitimate warrant was obtained? For example, if you had open l;liquor,appeared to be intoxicated, or had the smell of marijuana in your vehicle in a State where it wasn't legal, they would have probable cause, and if you allowed a search of your vehicle, and your iPhone was in the car, you have also given them the right to search/scan your iPhone. If you had Touch ID or Face ID activated, they could force you to unlock it.
    1) I don't know if the warrants or permission to search one thing gives the right to search others like a Russian nesting dolls, but Apple does make it easy to kill your biometric logins so that they can compile you all you want to unlock it with your finger or face and it won't do anything.
    • iPhone 5s to iPhones 7: Click the Sleep/Wake (On/Off) button five times in succession.
    • iPhones 8 and iPhone X: Squeeze the Side button and either Volume Up or Volume Down
    Additionally, 1Password introduced Travel Mode last year to limit how much personal data is being stored on your device in case you're entering into a country with less than savory laws about data protection.


    2) One feature I've always wanted are poisoned PIN/passcode and poisoned finger options. Initially, with a poisoned PIN/passcode, if you input the wrong PIN or passcode it will send out a distress call to either a person(s) in your contact or to authorities, along with your location. With a poisoned finger it was more simple, it would simply be an atypical finger that would lock down the device instead of unlocking it when it's verified (or wipe it if you had that option set) so that not even notifications will appear on the device until you unlock it with PIN/passcode.

    Frankly, I'm still bothered that so much data is showing up after a restart without me putting my passcode in. The device should show nothing. I know in the past it was even less secure after a restart because it would show the phone numbers and emails of the sender, not just their common name. It's one thing to show "Mom" on the screen and another to show my mother's email and/or phone number which they could then use to get more data. How hard would it be to say you got the message, which they can read, then figure out a scam to say your device is broken, to send money, or something else.

    But it's all a bit of a moot point when the iOS lock screen still probably has ways to break in using a series of weird commands with Siri and accessing Contacts. I don't know this could be implemented with Face ID? Make a goofy face? ¯\_(ツ)_/¯ 


    edited June 2018 GeorgeBMacAlex1N
  • Reply 19 of 50
    k2kwk2kw Posts: 2,077member
    So did anybody test this on Android phones using the USB port.   I bet google will fix it by 2022 and phone makers will sell/include it by 2025 and all google phones will be secure by 2030.
  • Reply 20 of 50
    eightzeroeightzero Posts: 3,134member
    Why all the fuss?

    The police, if they want, can search my phone.   Their biggest challenge would be boredom.  There's nothing there that would interest them.


    Are you sure? The location data in there could put you near the scene of a crime. Your search on the google last week for "how to sell anything fast" brought up links to kiting boosted goods. Oh, and police would never, never steal your credit card number. Everyone knows police officers are well paid, and never in the need of a little side money.


Sign In or Register to comment.