March 4, 2016

Hacking An iPhone

Much ado about nothing ? To remind you, we all know that you can brute force  your iPhone and bypass your password with technology boxes that simply try every single combination until they find the magic combination. The problem is that the iPhone hacker doesn’t know if ‘Erase Data’ is enabled.

To find out if yours is …

  • On iPhone / iPad - Open up your settings
  • Scroll down to Touch ID and Passcode
  • Enter your id (if set)
  • Scroll down to the bottom of the page and you will see something like this …


In this case - my iPad is set to delete all data after 10 failed passcode attempts. THAT is what the FBI is worried about. They already screwed up by asking the phone owner to change the password and they obviously don’t want to double down on their own stupidity, try and hack the phone and lose everything.

Enter the cavalry.

Well worth a read - and to be fair it doesn’t work on all versions of Apple’s iOS - in fact in the San Bernadino case it probably won’t since

That iPhone is running iOS 9, which is almost certainly immune to a brute-force hack, Chell says.

But, here is what I found interesting ….

IP Box gets around Apple’s auto-erase feature by cutting power to the device after each failed attempt. This means the wrong guesses don’t accumulate, opening the door for brute-force hacks, according to an analysis by British security consultancy MDSec.

and that

The hacking equipment is called IP Box, and can be found on eBay for about $200.

So - are you protected ?

Apple says that 23% of active iOS devices (including things like iPods and Apple TVS) run iOS 8 or earlier. Applying that ratio to our estimate of active iPhones gives a lower limit of 104 million phones running iOS 8 or earlier


Previous post
From The Ever Original Indexed Source which reminded me of an earlier post
Next post
Platforms Perhaps the most overused word in technology today. No - you can’t just start calling your app or web site a platform … that is NOT what a platform