FBI Trick For Breaking Into iPhone Likely To Leak

Megalith

Megalith

24-bit/48kHz
Staff member
Joined
Aug 20, 2006
Messages
13,000
Apple and other experts seem to think that whatever method the FBI is using to break into phones will be obsolete soon.

Once it is exposed, Apple should be able to plug the encryption hole, comforting iPhone users worried that losing physical possession of their devices will leave them vulnerable to hackers. When Apple does fix the flaw, it is expected to announce it to customers and thereby extend the rare public battle over security holes, a debate that typically rages out of public view. The Federal Bureau of Investigation last week dropped its courtroom quest to force Apple to hack into the iPhone of one of the San Bernardino shooters, saying an unidentified party provided a method for getting around the deceased killer's unknown passcode.
 
Agreed with tec. They are not looking so hot currently.... if you are a privacy and security kind of person.
 
Too bad the FBI felt the need to crack the phone, they could have simply went through the motions, maybe even losing the court case, and then still have a way to crack iphones they have. That said, Apple should just let it go and then they can sell their iPhone7, as tighter security! Kind of like how Microsoft would do with every iteration of Windows with "stability"
 
Ocellaris said:
Clearly the better answer is simply to not use a mobile device at all.
Click to expand...

There have been some reports that even older technologies thought to be secure have been compromised. Stay vigilante.

telecommunications-kid-phone_hacking-phone_hackers-phones-paper_cups-hbrn277_low.jpg
 
The fact is they compromized an iPhone on an older version of iOS than Apple currently supports.

Who knows, they may have used a vulnerability that doesn't even exist on newer versions.
 
I doubt it's an "encryption hole" , really. Having an exploit usually doesn't magically give you an AES key, unless iOS leaked it onto the filesystem somehow.

I could see them being able to RCE the phone and running however many passcode attempts that they want, though.

Trust no one...
 
Rav3n said:
Agreed with tec. They are not looking so hot currently.... if you are a privacy and security kind of person.
Click to expand...
They're looking great to me. The method used by the third party to get into the device was/is obviously going to become known to Apple. Then Apple will fix it and have an improved device and still have no court mandate forcing them to do things they don't want to. If anything the FBI did security testing for Apple with no real charge to Apple.

iPhone 7 will be nice.
 
From what i heard they used face unlock to get in the phone so i guess they held a picture of the guy up to the phone and it opened...

I am more interested in finding out if there was any evidence on the phone for them of if it was a wiped phone like all the others...
 
Lunas said:
From what i heard they used face unlock to get in the phone so i guess they held a picture of the guy up to the phone and it opened...

I am more interested in finding out if there was any evidence on the phone for them of if it was a wiped phone like all the others...
Click to expand...

iOS doesn't have face unlock...
 
NAND Mirroring concept was already demonstrated and most likely case of success:

 
LightningCrash said:
To summarize this video: you can break into phones that you've already logged into and rooted.
Click to expand...
Unless you have a bit of expensive hardware which he explains in the video.

Also this was my idea months ago... Also this is not really something easily fixed if someone with a lab setup has your phone they can remove the nand and do this not something that can be protected from in order to fix it Apple will need to make bad password attempts a hardware recorded thing via efuses up to 10 attempts each time blowing an efuse when 10 fuses are blown either wipe the chip or self destruct entirely. Even then to bypass that simply clone the nand into a clone chip without the efuses. Humm what if there was a check that ran to another chip on the board where if it failed that check it would just wipe.


Also to the FBI or Apple I would like to be paid for my ideas for this one 10k would help me pay off my student loans and get me back in a less stressful situation. I am sure you already know where and how to contact me...
 
Last edited:
But it was a demonstration of the how in software.
 
You must log in or register to reply here.
Back
Top