Slashdot Mirror

← Back to Stories (view on slashdot.org)

iPhone Takes Screenshots of Everything You Do

Posted by kdawson on from the watchbird-is-watching-you dept.

The_AV8R writes "Jonathan Zdziarski showed that every time you press the Home button on your iPhone, a screen capture is taken in order to produce a visual effect. This image is then cached and later deleted. Zdziarski says that there have been cases of law enforcement looking up sex offenders' old data and checking recovered screenshots." This revelation occurred in the midst of a webcast on iPhone forensics, demonstrating how to bypass the iPhone's password security (not trivial, but doable). Video from the talk is not online yet but is promised soon over at O'Reilly.

36 of 225 comments (clear)

  1. FUD by Ethanol-fueled · · Score: 4, Funny
    From TFA:

    Therefore, forensics experts have used this security flaw to successfully nab criminals who have been accused of rape, murder or drug deals, Zdziarski said.

    iPhone: the tool of choice for rapists, murders, and drug dealers!

    Joking aside, the article is puzzling and it reeks of FUD: if the iCrooks were bad enough to get the authorities to actively track and sieze their data then they deserve to be caught for being too stoopid to buy disposable phones in cash from 7-11. Even Johnny dormroom pot- dealer knows that!

    1. Re:FUD by wild_quinine · · Score: 4, Funny

      Joking aside, the article is puzzling and it reeks of FUD:

      Apple FUD on slashdot? Maybe the LHC is gearing up for armageddon after all.

    2. Re:FUD by djh101010 · · Score: 4, Funny

      Sorry, LSD, this is the apple-hating thread, not the rant-about-wasting-jail-space-on-potheads thread.

    3. Re:FUD by Nathrael · · Score: 3, Informative

      TFA = The f**king article. Comes from "RTFM"; usually, if someone tells you to RTFA, he means that you should read the Slashdot article as well as the off-site articles mentioned in it before posting something that is self-explanatory if you RTFA.

      --
      A good education is a bit like a STD - it makes you unsuitable for a lot of jobs and gives you a desire to spread it.
    4. Re:FUD by Hognoxious · · Score: 4, Funny

      Off-topic but yes, possessing drugs does make you a crook

      Or a pharmacist.

      --
      Confucius say, "Find worm in apple - bad. Find half a worm - worse."
    5. Re:FUD by neoform · · Score: 4, Funny

      Alls I heard was "I love apple" and "I'm a huge fanboy"..

      --
      MABASPLOOM!
  2. Malfeasance handbook by ColdWetDog · · Score: 4, Insightful

    Item 1:

    Smart crooks use dumb (disposable) phones.
    Dumb crooks use smart phones.

    --
    Faster! Faster! Faster would be better!
  3. Just out of curiosity... by AndyG314 · · Score: 4, Funny

    What type of incriminating things are sex ofenders doing with their iPhones.

    --
    If it's dead, you killed it.
    1. Re:Just out of curiosity... by Fx.Dr · · Score: 5, Funny

      I believe it has something to do with multi-touch.

  4. Re:It's nice to know by mmkkbb · · Score: 5, Interesting

    Errr, it's not phoning these screenshots home. You must have a problem with .bash_history too, right? Caching your keystrokes! OMG!

    --
    -mkb
  5. Pragmatic by mfh · · Score: 4, Funny

    It's pragmatic to not press the home button when doing home invasions or killing people, I guess.

    --
    The dangers of knowledge trigger emotional distress in human beings.
    1. Re:Pragmatic by Em+Ellel · · Score: 3, Informative

      It's pragmatic to not press the home button when doing home invasions or killing people, I guess.

      Although you are probably technically right, unless you are killing them with a scathing email, or nasty AC troll post - it is not likely that the home button will matter. It captures the screenshot of what is on your screen - not from the camera. (unless you happend to have the camera app on at the moment of course)

      -Em

      --
      RelevantElephants: A Somatic WebComic...
  6. simple fix for Apple by RJBeery · · Score: 3, Insightful

    Give the concerned users an option of turning off the "shrinking screenshot" animation that occurs when the Home button is pressed (which is why the screenshot is cached in the first place).

  7. What's the problem by KasperMeerts · · Score: 5, Interesting

    So it takes a screenshot for some effect? Is there even a way to do this without taking a screenshot? A way that is easy enough to be performed on a smartphone?

    And what did you expect from Apple? That every bit of data that was discarded is overwritten ten times? Jeez, I enjoy bashing big companies as much as the other guy but now they're looking too far. Remember, it also saves your web history, every picture you took, every file you opened everything you did somewhere...

    --
    As long as there are slaughterhouses, there will be battlefields.
    1. Re:What's the problem by fermion · · Score: 3, Insightful
      Sometimes it is just interesting to think about security, and security choices that are made. Certainly the security incompetence of most manufactures does not reach the level of homeland security, but neither does the security issues. It still is interesting to think about. For instance, the iPhone shows one letter of the password for usability, and this is likely worth the security compromise. Many web browser automatically cache a large number of previous web pages, and a large amount of history, so any minimally competent sleuth can determine everything you have done for the past week. This has security implications, yet when Firefox implemented the very reasonable privacy feature, they get ridiculed with installing a porn filter. In fact such history and cache can be argued to be a unnecessary security risk that should not be turned on by default, but the compromise has been made.

      In this case, a potential security issue has been introduced for the purpose of look and feel. While the headline is sensational and seems to be written by a person with no technical background or understanding fo the iPhone, the point remains. Pictures of what you are doing prior to pressing the home button are taken, and stored for some indeterminate amount of time. This is like the browser issue, likely not a big problem. OTOH, there does not seem to be an option under the general/home button menu to turn off this effect, so there is no way for persons worried about the issue to turn it off. It is an interesting problem.

      --
      "She's a scientist and a lesbian. She's not going to let it slide." Orphan Black
    2. Re:What's the problem by Anonymous Coward · · Score: 3, Insightful

      It's crap like this that makes me feel just fine having my little fugly Palm Centro. I don't have to have yet another security hole because Apple felt taking a screenshot would make for a cool bit of eye-candy.

      Admit it. You're letting envy cloud your judgement.

      Think about what you're saying. "Yeah, my device is ugly and stupid, but YOURS HAS YOUR PERSONAL INFORMATION ON IT".

      Seriously. Someone gets my phone, my *LAST* concern is potentially recoverable screenshots of what I was doing on it when I closed an application. What about all the personal data it stores through the very nature of its function?!

      lame

  8. And this just in! by Artraze · · Score: 5, Funny

    It turns out that you browser will store all the information needed to recreate the web pages you visit! Not just a screenshot! This critical flaw appears to have present for years in all known browsers! The end is near!

    Seriously? Come on. I know ./ likes to post anything related to the iPhone, especially if it involves "spying", but this is pretty uninteresting. Security is traded for speed and features on a daily basis, including places where do so presents a major risk (*cough*Outlook). This is really not too surprising since it trades at most a little privacy in exchange for a neat effect; what would you expect Apple's iCandy to do?

    1. Re:And this just in! by venicebeach · · Score: 5, Funny

      It's even worse than that, the iPhone keeps copies of all your emails, and records phone numbers you have called as well as keeping a database of all your personal contacts!!! The thing is a 5 ounce privacy invasion machine!

  9. Re:It's nice to know by Hyppy · · Score: 3, Interesting

    It's trivial to disable logging to .bash_history. What about for this?

  10. fud by sam_paris · · Score: 3, Insightful

    Tag this article as fud, because that's what it is. Any excuse to bash apple and/or iphone.. Really, if we're going to get upset about this, let's get upset about browser caching, cookies, history.. etc etc

  11. Re:It's nice to know by Subliminalbits · · Score: 5, Funny

    Don't forget the page file. The horror; your computer is constantly taking screen shots of your applications ram and storing them on the hard drive!

  12. Re:Makes you wonder.... by ByOhTek · · Score: 5, Insightful

    it makes me wonder why there is no 'badtitle' tag.

    It doesn't take a screenshot of everything you do, just when you hit the home button.

    --
    Self proclaimed typo king, and inventor of the bear destroying coffee table (patent not pending).
  13. Re:It's nice to know by Firehed · · Score: 4, Insightful

    Sure, if you overwrite your firmware (jailbreak), enable SSH access to the phone, and then NOT change your root password. Quite frankly, you deserve it at that point.

    Sounds like yet another sensationalist (and completely inaccurate) headline pointing to a non-story. Unless some pervert is hits the home button while trying to take a (crappy, borderline-useless unless it's being done in full daylight) picture of himself raping a kid, AND law enforcement not only knows to look for this cached file, I don't really see this being an issue. I suppose it could possibly be used as supplemental evidence when a case is being built up, but the actual AIM chat logs, sent emails, phone call history (all of which are far more accessible) and such would be far more potentially incriminating.

    --
    How are sites slashdotted when nobody reads TFAs?
  14. Even the Author Doesn't Think It's News by Nuclear+Elephant · · Score: 5, Informative

    I _am_ Jonathan Zdziarski and even I don't understand why this is news.

    This was a side note I mentioned the other day, and has been something I've been grousing about for over a year. It's unnecessary, and a bit of a privacy leak that can be exploited by forensic examiners, but hardly news for the reasons already stated in the comments.

    1. Re:Even the Author Doesn't Think It's News by Rob+T+Firefly · · Score: 4, Funny

      I _am_ Jonathan Zdziarski

      No, I'm Jonathan Zdziarski!

      --
      Slashdot Burying Stories About Slashdot Media Owned
    2. Re:Even the Author Doesn't Think It's News by Inda · · Score: 4, Funny

      No, I am Jonathan Zdziarski.

      --
      This post contains benzene, nitrosamines, formaldehyde and hydrogen cyanide.
    3. Re:Even the Author Doesn't Think It's News by Nuclear+Elephant · · Score: 5, Informative

      To add one more comment to this, though, it's been inaccurately reported that this process takes an hour to complete. Well, the passcode breaking piece of the demonstration technically takes maybe 15-20 minutes for a trained pro to prepare, but once you've prepared the custom firmware payload, you can re-use it over and over again on different iPhones. The actual payload installation takes only 60 seconds, so someone who came along prepared would be able to break your passcode in 60 seconds - not an hour. With that said though, you still need to transmit the raw disk image to a desktop machine to access this data. That transfer can easily take 2-3 hours. This means that you're not going to have your personal data hijacked by simply placing the phone down for a moment, but if it were stolen or seized, it's most certainly easy to recover.

    4. Re:Even the Author Doesn't Think It's News by fo0bar · · Score: 3, Funny

      I _am_ Jonathan Zdziarski and even I don't understand why this is news.

      Welcome to Slashdot. Here's your oversized novelty foam finger.

  15. I've seen this... by zosa · · Score: 3, Interesting

    I had a glitch occur that put one of these screen shots in my photos collection. I was wondering what kind of glitch would have generated a screenshot. Now that is partially explained.

  16. I'll show them... by russotto · · Score: 3, Funny

    I wrote a little app to fill the cache with screenshots of the IRS web pages. Anyone tries to investigate me, they'll have to carefully examine Publication 936, the instructions for Schedule F1, the guidelines for reporting "nanny" wages, and the like. Even if they aren't literally bored to death, they definitely won't want to look any further.

  17. Re:Makes you wonder.... by frosty_tsm · · Score: 3, Funny

    You can with the iBeer app.

    (sorry, I tried to find the link)

  18. So what? by jrothwell97 · · Score: 3, Informative

    The phone swaps an image to the disk so it can later be used in compositing. It's nothing new you know. Virtual memory's been around for aeons, and looking through an unencrypted swapfile to find incriminating information isn't exactly new either.

    --
    Those using pirated Tinysoft signatures(TM) are a real threat to society and should all be thrown in jail.
  19. Re:It's nice to know by Em+Ellel · · Score: 3, Interesting

    You'll no doubt be shocked to learn that even though you might empty your Recycle Bin there are some thing that anyone with physical access to your computer MAY be able to recover.

    Thank you, that's the point. I DO know that about files *I* create and *I* delete and I can delete them securely if I choose to. What I did NOT know is that something is capturing screenshots of what I am doing and saving them without my knowledge. Generally this sort of a behavior is reserved for spyware, rootkits and other malware. I realize it is not intended as such, but neither was the Sony DRM rootkit a while back.
    I would guess most people would have an issue to have a keylogger installed on their computers. This is no different..

    (the word may is in all caps for the imbeciles reading, and because some of us are unable to detect when we are being patronizing)

    Ok, but there MAY be something vaguely self-referential about that....

    -Em

    --
    RelevantElephants: A Somatic WebComic...
  20. no foundation by dynamo · · Score: 3, Interesting

    This fool doesn't even present any evidence that this 'screenshot' is -ever- even written to storage. Sure, it has to be in RAM to be shown zooming away, but the same thing applies to showing anything on the screen at all. Just because it saves processing power to capture an image instead of zooming the live app like OS X does, doesn't imply that the image ever leaves volatile RAM.

    - written from my iphone.

  21. Re:Makes you wonder.... by FireStormZ · · Score: 3, Insightful

    I can see a situation in which a phone *might* make sense (kid works a late shift, has an unreliable car, etc... But I cant see the wisdom in getting a kid the iPhone or any other upper level phone. If a kid works and uses their own money thats all well and good but its way to much to give a kid because 'they need one'.

    --
    "Ahh! Arrogance and stupidity in the same package, how efficient of you!" --Londo Molari
  22. Re:Makes you wonder.... by Lord+Flipper · · Score: 3, Insightful

    Jealous much?

    Jealous of what, exactly? Kids sending SMS text at 100s the cost of an email, or simple IM? People paying hundreds of bucks to set themselves up for locked-in contracts?

    I've been an Apple client since 1979. You want to know what pisses me off? Apple turning into a fucking toy company, and incrementally destroying NeXTSTEP. Apple spending time on bullshit iPhone screenshot shit, and hanging on to the HFS+ file system, which is actually incompatible with their lousy OS. Leopard is nothing but a resource-hungry POS.

    I ride the bus and Light Rail, here in Minneapolis. I hear the ringtones and sometimes I glance around and every kid and person of color on the whole bus is playing Tetris, or fiddling with their fucking phones. When I see the voting returns, the top 10 TV shows by viewership and the voracious appetite in America for 'subjective' dispute of scientific facts, it's no wonder the country has reached a point where every successive 'decision' brings them closer to their own private armageddon. These people are wasting their fucking time on bullshit. Apple knows this, so yes, they pander to people with more money than brains.

    And just so there's no mistake, my last four PowerBooks, and three Apple desktops, were gifts from my happy clients. Apple hasn't seen a nickel (outside of ONE recently-purchased keyboard), from me, since '94. And if Adobe ever ports to Linux, that's it for me, sayonara toy company, and back to work.

    Trolling much?