Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cellebrite Can Now Unlock Apple iPhone 6, 6 Plus (cyberscoop.com)

Posted by BeauHD on from the here-we-go-again dept.

Patrick O'Neill writes: A year after the battle between the FBI and Apple over unlocking an iPhone 5c used by a shooter in the San Bernardino terrorist attack, smartphone cracking company Cellebrite announced it can now unlock the iPhone 6 and 6 Plus for customers at rates ranging from $1,500 to $250,000. The company's newest products also extract and analyze data from a wide range of popular apps including all of the most popular secure messengers around. From the Cyberscoop report: "Cellebrite's ability to break into the iPhone 6 and 6 Plus comes in their latest line of product releases. The newest Cellebrite product, UFED 6.0, boasts dozens of new and improved features including the ability to extract data from 51 Samsung Android devices including the Galaxy S7 and Galaxy S7 Edge, the latest flagship models for Android's most popular brand, as well as the new high-end Google Pixel Android devices."

63 of 104 comments (clear)

  1. Well, heck... by Anonymous Coward · · Score: 1

    If they want my password that bad, I just may give it to them for $250,000.

  2. $1500 to $250,000 by rmdingler · · Score: 1

    Quite a range. I dearly hope the lower end of the range is for some Shleprock who forgot his passcode and the 250K fee is for any customer with the last name Government.

    --
    Happiness in intelligent people is the rarest thing I know.

    Ernest Hemingway

    1. Re: $1500 to $250,000 by Anonymous Coward · · Score: 3, Informative

      "The company charges $1,500 to unlock an individual phone, while a yearly subscription to the service runs for $250,000, according to a report from the Intercept last year."

    2. Re: $1500 to $250,000 by rmdingler · · Score: 1

      The FBI spent close to a million on the San Bernadino iPhone 5C hack, but they also acquired the technique from the contractor.

      --
      Happiness in intelligent people is the rarest thing I know.

      Ernest Hemingway

    3. Re: $1500 to $250,000 by ColdWetDog · · Score: 1

      Bleeding edge. Always happens in technology. You pay to be first.

      --
      Faster! Faster! Faster would be better!
    4. Re:$1500 to $250,000 by mysidia · · Score: 1

      It's probably a PAY PER USE Software license..... Clarified Analyzer was a commercial alternative
      to Wireshark that used to be used that. Each license Allows one-time or one-shot use of the software, and
      each time you want to go back and launch the program, and re-use it, then you need to buy another ticket.

      E.g. You buy 1 Cookie for $1500 which allows you to use the Smartphone unlocker software program One time on one device,
      and each smartphone you unlock decreases your licenses remaining counter, and your licenses cannot be reused.

      Or you buy a 200 Cookie license for $250,000, and that lets you do the unlock 200 times.

    5. Re: $1500 to $250,000 by rmdingler · · Score: 1

      Ah, to be fair, you most often still pay the fare to be 199th, 1999th, and so on... but the sooner you need your new shiny, relative to the competing contestants in your social circle (perhaps some social groups should be square or other geometric configurations), the more you have to pay for the oneupmanship.

      --
      Happiness in intelligent people is the rarest thing I know.

      Ernest Hemingway

    6. Re: $1500 to $250,000 by AmiMoJo · · Score: 3, Insightful

      If I were one of the affected manufacturers, I'd get phones unlocked (in another name) and study them carefully when they came back. Maybe even install some spyware to try to figure out what Cellebrite is doing. And then fix those vulnerabilities.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  3. Cellebrite by turkeydance · · Score: 2

    with Kool and the Gang

  4. Re:Awesome! by Anonymous Coward · · Score: 2, Interesting

    How do you know Cellebrite isn't an Apple funded offshoot to funnel govt money in exchange for backdoors.

  5. Re:misread as cellulite by bobbied · · Score: 1

    I believe it. Fingerprint scanning was once a really loosey goosey way of providing the illusion of security, but where easily fooled using some pretty low tech. Although a hotdog sure seems to be pretty low tech.. Even on a good day, finger print scanning is pretty bad, either giving you a really high false positive or really high reject rates, even today, when the horse power needed to sort though a pile of prospective fingerprints looking for a match is more readily available.

    Think of it as a really bad padlock with one tumbler made of plastic... Easy to pick if you don't want anybody to know you broke in, or you can just yank it off with your bare hands if you don't care if they find out...

    --
    "File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
  6. Cellbrite is the next best thing by dave562 · · Score: 1

    Cellbrite is the next best thing to having someone like geohotz on the payroll. The forensics guys at my work swear by it as their go to tool for doing forensics collections of mobile devices.

  7. Pirate vs. Entrepreneur? by Anonymous Coward · · Score: 2, Interesting

    Help me understand the legal standing of Cellbrite.

    If I buy an iPhone 6 and circumvent the built-in encryption, am I not in violation of the DCMA? Yet when Cellbrite does it, and sells that service as a product it's not a DMCA violation but instead a legal offering to law enforcement (or anyone willing to pay the crazy fee)?

    Am I missing something here?

    1. Re:Pirate vs. Entrepreneur? by Phusion · · Score: 1

      You're not missing anything, Govt and LE in general are above the law and can do whatever the fuck they want in the name of protecting us from evil.

      --
      640k ought to be enough for anyone.
    2. Re:Pirate vs. Entrepreneur? by ColdWetDog · · Score: 1

      Yep. Just look at any Police / Law Enforcement magazine. All sorts of things you can't (easily, legally) get. Those really cool looking H&K automatics that various Government Nasties run around with - you get the semi auto version. And the little clip. Useless in a firefight against Zombies.

      Flash bangs. Cell phone intercepts. MVRAPS.

      Makes you jealous, it does.

      --
      Faster! Faster! Faster would be better!
    3. Re:Pirate vs. Entrepreneur? by Anonymous Coward · · Score: 1

      If I buy an iPhone 6 and circumvent the built-in encryption, am I not in violation of the DCMA?

      It depends on exactly what you're decrypting, and who holds the copyright on the data being decrypted. If it's your data and you authorize the decryption (or if it's not-copyrightable information, like facts (but not "alt facts", as those are copyrightable expressions!)) then it is not a violation of DMCA.

      Yet when Cellbrite does it, and sells that service as a product it's not a DMCA violation but instead a legal offering to law enforcement

      DMCA has an exemption for law enforcement investigations or those working at their request. So, whether it's copyrighted or not, and whether it's authorized by the copyright holder or not, it's not a violation.

      (or anyone willing to pay the crazy fee)?

      Not so fast. That can easily be a DMCA violation.

    4. Re:Pirate vs. Entrepreneur? by jandrese · · Score: 1

      Your identity isn't copyrighted, so there is no DMCA violation.

      --

      I read the internet for the articles.
    5. Re:Pirate vs. Entrepreneur? by Highdude702 · · Score: 2

      A lot of money is what you're missing.

    6. Re:Pirate vs. Entrepreneur? by Highdude702 · · Score: 1

      That's where being a hardware hacker gets you free shit. cheaper normally.

    7. Re:Pirate vs. Entrepreneur? by guruevi · · Score: 3, Informative

      Cellebrite is an Israeli company, the DMCA does not apply there. Moreover, the only one having a standing regards the DMCA would be Apple, not the victim, and the DMCA does not apply to the sovereign state of the US and thus by extension, law enforcement.

      --
      Custom electronics and digital signage for your business: www.evcircuits.com
    8. Re:Pirate vs. Entrepreneur? by adamstew · · Score: 1

      Moreover, the only one having a standing regards the DMCA would be Apple, not the victim,

      Not necessarily:

      The DMCA says:

      No person shall circumvent a technological measure that effectively controls access to a work protected under this title. The prohibition contained in the preceding sentence shall take effect at the end of the 2-year period beginning on the date of the enactment of this chapter.

      (1) No person shall manufacture, import, offer to the public, provide, or otherwise traffic in any technology, product, service, device, component, or part thereof, that—
      (A) is primarily designed or produced for the purpose of circumventing protection afforded by a technological measure that effectively protects a right of a copyright owner under this title in a work or a portion thereof;
      (B) has only limited commercially significant purpose or use other than to circumvent protection afforded by a technological measure that effectively protects a right of a copyright owner under this title in a work or a portion thereof; or
      (C) is marketed by that person or another acting in concert with that person with that person’s knowledge for use in circumventing protection afforded by a technological measure that effectively protects a right of a copyright owner under this title in a work or a portion thereof.

      The data on the phone itself are copyrighted by the individual who created it. If I took any photo, typed up any e-mail, etc. it's considered a copyrighted work the instant it's created. You, as the individual, could claim that they violated the DMCA by breaking your effective technological method for preventing the distribution of your copyrighted work.

      There is the law enforcement exemption from the DMCA, but that seems to apply to law enforcement officers and government employees.

    9. Re:Pirate vs. Entrepreneur? by TheFakeTimCook · · Score: 1

      Help me understand the legal standing of Cellbrite.

      If I buy an iPhone 6 and circumvent the built-in encryption, am I not in violation of the DCMA? Yet when Cellbrite does it, and sells that service as a product it's not a DMCA violation but instead a legal offering to law enforcement (or anyone willing to pay the crazy fee)?

      Am I missing something here?

      Good point!

  8. Devils advocate, isn't this protected by the DMCA? by Anonymous Coward · · Score: 1

    n/t

  9. Re:One more reason to never own a smartphone by sims+2 · · Score: 1

    Some of us have jobs.....Maybe we could switch to using walki talkies that would solve some of the problem but create a lot of new ones: extra device, everyone and their dog with a scanner can hear and limited range.

    --
    Minimum threshold fixed. Thanks!
  10. Re:One more reason to never own a smartphone by Phusion · · Score: 1

    Such a brave stance that--- Well, although many of us are indeed too dependent on our smartphones, they offer real utility beyond taking pictures of our food. I would be completely fucked without GPS + maps. Also I don't drive, so ride sharing apps are a life saver. The other things like twitter, reddit, music, banking etc are nice, compromise my security and I could live without them, but to just flat out say that people attached to, or I assume anyone who uses a smartphone is pathetic, well... fuck you?

    --
    640k ought to be enough for anyone.
  11. Re:misread as cellulite by TWX · · Score: 1

    I wonder if a dirty fingerprint scanner simply picked up residue from the previous time it was touched.

    --
    Do not look into laser with remaining eye.
  12. Profit! by JustAnotherOldGuy · · Score: 1

    1) Pay $250K for the yearly subscription.
    2) Advertise phone unlocking nationwide for $500.
    3) Get 600 people to pay to unlock a phone (individuals, police agencies, private detectives, etc etc etc)
    4) $50K profit! Woo hoo!

    Get 1200 people to pay and make $100K profit. And so on...

    All I need is $250K to get started...and another $100K for advertising.

    --
    Just cruising through this digital world at 33 1/3 rpm...
    1. Re:Profit! by guruevi · · Score: 1

      Most people's "stuff" isn't worth $600, at that price point, perhaps a few companies with dimwitted C-levels. Additionally, most devices backup automatically to iCloud or sync to your computer, so all you have to do is reset it and re-sync it.

      There is very little use for this tool, except law enforcement and spy stuff. Which is why it's so expensive.

      My question is: how does it actually work. Given all the security on the device, I wouldn't be surprised if this is just a temporary software hack.

      --
      Custom electronics and digital signage for your business: www.evcircuits.com
    2. Re:Profit! by JustAnotherOldGuy · · Score: 1

      Most people's "stuff" isn't worth $600

      So advertise on eBay that you'll unlock any iPhone for $20 and hope the masses respond, lol. :)

      --
      Just cruising through this digital world at 33 1/3 rpm...
    3. Re:Profit! by burtosis · · Score: 1

      1) Pay $250K for the yearly subscription. 2) Advertise phone unlocking nationwide for $500. 3) Get 600 people to pay to unlock a phone (individuals, police agencies, private detectives, etc etc etc) 4) $50K profit! Woo hoo!

      Get 1200 people to pay and make $100K profit. And so on...

      All I need is $250K to get started...and another $100K for advertising.

      Better yet buy all the stolen phones that are locked off eBay for super cheap, unlock them, sell full price and massively profit. You could do 100k a week.

  13. Re:misread as cellulite by jandrese · · Score: 1

    As I understand it phone fingerprint scanners don't actually look at your fingerprint. Rather they measure the capacitance over a series of fluctuations in the field density to make the "fingerprint". Or something like that. I don't know how many unique bits you can get out of that, but the danger of someone managing a false positive is reduced by simply locking it out after three failed scans and making the user type in their password instead.

    --

    I read the internet for the articles.
  14. Re:One more reason to never own a smartphone by Ol+Olsoc · · Score: 2

    I'll keep my secrets in my head and stick to a $50 dumbphone with nothing in it and not even turned on for more than 1 hour a day. Seriously you people so attached to your goddamned smartphones are pathetic and I pity you.

    Grandpa Gribble? they let you out of the home again?

    If you are that shit shakingly paranoid about security, why on earth are you even using a device whose main feature is to track you? Without that tracking, the cellular system doesn't function. And they even keep logs.

    That one hour you have it turned on, your phone is alerting your presence to teh authorities, and they be a comin ta get ya!

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
  15. Re:One more reason to never own a smartphone by Ol+Olsoc · · Score: 2

    Such a brave stance that--- Well, although many of us are indeed too dependent on our smartphones, they offer real utility beyond taking pictures of our food.

    There is nothing about the cellular system that is secure. So use what you use as long as you are comfortable with it. AC has some weird ideas that he is somehow immune to the tracking and other possibilities that are just inherent in the system. If LE is interested, any time his phone connects to a couple towers, he's nailed. I'm not inclined to do anything illegal, but if I was, none of it would be on my cell or computer. I use the hell out of my smartphone for trip mapping and location services. The occasional tethering, and most of that is data lookup. I have no plans to get rid of mine, no matter what some AC thinks.

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
  16. Re: One more reason to never own a smartphone by Bing+Tsher+E · · Score: 1

    Why did what he said make you so angry?

  17. Re: One more reason to never own a smartphone by Ol+Olsoc · · Score: 1

    Why did what he said make you so angry?

    Huh? I was in full tease mode. Kinda like when your crazy uncle Louie shows up at family gatherings and brags about not having an email address, and I tease him about all the women he must get by being such an independent stud. In this case, I just gave AC a little telling. Maybe he takes telling, maybe not. If I had to assign an emotion to it, it might be to feel badly because I ridiculed the guy who thinks that he is somehow more "secure" because of having a feature phone, or whatever it is he has. Then again, nahhh. Peace out, Bing.

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
  18. Re:And that's why by luckypunq · · Score: 1

    The retina lock on my lumia 950 is a very nice feature, of course the 4 digit pin kinda makes it redundant .. why ? you ask ! I understand that in the US you can be compelled to provide a fingerprint, but not a retina scan correct me if I am wrong. As far as being forced to open a retina scan, it's very easy to closed your eyes, screw up you face to stop it woring, believe me I have tested this extensively, and if you don't want windows hello to work, it is very easy to make it not open.

  19. Sounds like Cellebrite is an enemy of the people by Khyber · · Score: 2, Insightful

    Sounds like the shareholders of Cellebrite need to be strung up by their necks until dead for allowing the government to spy upon us.

    --
    Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
  20. Secure enclave by manu0601 · · Score: 1

    Does that mean they found a way around the secure enclave?

    1. Re:Secure enclave by brantondaveperson · · Score: 1

      Probably not. It probably doesn't actually work in anything other than a 'simple' case of faking a fingerprint unlock.

    2. Re:Secure enclave by TheFakeTimCook · · Score: 1

      Might be. There are many academic papers discussing TrustZone bypass with physical access.

      Apple has their own "TrustZone" enhancements.

  21. Re:And that's why by mlts · · Score: 1

    I have wondered about different virtual machines on a phone. The retina lock might get one the VM for a workspace for personal stuff, while to access business data, it would require a fingerprint and PIN. Done right, there would be plausible deniability for this... and more importantly, it would separate business and personal stuff.

  22. Re: And that's why by DontBeAMoran · · Score: 3, Funny

    I remember doing that a few decades ago. I worked at ScumSoft, Inc. and since I was very sick the only way to open my office door was to use a photocopy of my face I did a week earlier.

    --
    #DeleteFacebook
  23. Re:Devils advocate, isn't this protected by the DM by cant_get_a_good_nick · · Score: 1

    People who ask for this are above the law, either cops who don't care if what they do is illegal, or criminals who don't care.

  24. 167 by rmdingler · · Score: 1

    Alright, lets say I'm likely to use the license >1, but 200 times... what's the point at which it begins to pay dividends to own the subscription?

    --
    Happiness in intelligent people is the rarest thing I know.

    Ernest Hemingway

    1. Re:167 by cdrudge · · Score: 1

      Well, if you're only two options are $1500 for a single use or $250,000 for a subscription, then I would venture a guess that it would start to pay dividends at $250,000 / $1500, or after the 167th phone is unlocked.

  25. Re:One more reason to never own a smartphone by Plus1Entropy · · Score: 1

    Whoa, slow down there George Jetson. I don't even have a cellphone.

    I only communicate over ham radios using Morse Code to transmit ciphertext that can only be decoded with a one-time pad provided to me through a dead-drop.

    --
    Only crack the nuts that crack. You don't put the ones that don't crack in the sack.
  26. Re:Sounds like Cellebrite is an enemy of the peopl by Plus1Entropy · · Score: 1

    OK, I'll add it to the list:

    1. So-called judges.
    2. The press.
    3. Cellebrite.

    --
    Only crack the nuts that crack. You don't put the ones that don't crack in the sack.
  27. Re:One more reason to own a smartphone by John.Banister · · Score: 1

    Now I'm imagining someone paying Cellbrite $1500 to unlock my smartphone, and once it's unlocked, all they find is hundreds of photos of my food. I suppose I'd want a steganographic watermarking app that encodes a randomly generated serial number in each image.

  28. Re:Sounds like Cellebrite is an enemy of the peopl by Anonymous Coward · · Score: 1

    Lets add car manufacturers to the list for letting government employees drive around harassing us, weapons manufacturers that sell to the government, clothing and office equipment suppliers that sell to the government, food and utility companies that sell to the government...

    Rather than blaming a couple of dozen shareholders, perhaps you should look a little harder at the hundreds of millions of voters who continue to vote for candidates who allow the government to spy on 'us'.

  29. Re: Awesome! by dougdonovan · · Score: 1

    it was just a matter of time. someone will...figure it out.

  30. Re:One more reason to never own a smartphone by AmiMoJo · · Score: 1

    I'm surprised more criminals don't give their phones to someone else while they are breaking the law, to create an alibi. The cops will get the cell records and datarape the phone, generating evidence that can then be used in the criminal's own defence.

    --
    const int one = 65536; (Silvermoon, Texture.cs)
    SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  31. Re:Sounds like Cellebrite is an enemy of the peopl by TheGratefulNet · · Score: 3

    people need to defend themselves.

    there are hostiles out there that want to do us harm, either now or perhaps, later.

    these hostiles are GOVERNMENTS and CORPORATIONS.

    no one speaks for us, the individual, anymore. both those bad guys want to do us harm and do not have our best interests at heart.

    its time for a revolution. seriously, its over due.

    and if those treasonous corps and govs get punished by mobs, I don't think I'll lose any sleep over that ;)

    --

    --
    "It is now safe to switch off your computer."
  32. Random number generator by kcdoodle · · Score: 1

    We should all store massive amounts of files that have nothing but random data in them.
    Give them names like NuclearCode.doc, fill some of the empty space on our hard drives with them.
    Attach them to every single Email and text we send.

    The NSA computers would screech to a halt wading through all the noise,

    --

    - I live the greatest adventure anyone could possibly desire. - Tosk the Hunted
  33. Gentle reminder by TVmisGuided · · Score: 1

    There is not, and never has been, any such thing as "privacy" on the Internet.

    This has been a public service announcement.

    --
    All the world's an analog stage, and digital circuits play only bit parts.
  34. Only Apple cares about our privacy? by yuvcifjt · · Score: 1

    Although intriguing and saddening that they've unlocked the iPhone 6 (but not 6s?).

    What's more intriguing is that, why are Android phones so easy to break?!
    And why is it we never hear from Google/Microsoft wanting to protect its users against government surveillance, unlike Apple.
    ... I guess everyone is aware that Google is a corporate spying empire, and yet there are people here who still argue against Apple and advocate for Android spyware?

    Would you advocate GMail/Hangouts over Signal/Telegram/WhatsApp ?

    1. Re:Only Apple cares about our privacy? by tlhIngan · · Score: 1

      Although intriguing and saddening that they've unlocked the iPhone 6 (but not 6s?).

      What's more intriguing is that, why are Android phones so easy to break?!
      And why is it we never hear from Google/Microsoft wanting to protect its users against government surveillance, unlike Apple. ... I guess everyone is aware that Google is a corporate spying empire, and yet there are people here who still argue against Apple and advocate for Android spyware?

      Would you advocate GMail/Hangouts over Signal/Telegram/WhatsApp ?

      The interesting thing is how few details there are about how they did it. I mean, why the 6/6s and not the 6+? Given for the unlock requires physical access to the phone, it's probably something they've physically accessed.

      And unfortunately, Androids are much easier to hack - back when Apple was fighting the FBI, there was over 600 iPhones needing unlocking. The number of Android phones? Only 20 or so.

      First, most Android phones do not encrypt storage by default. iPhones have encrypted it by default since the 3GS (it's why a "clear everything" on an iPhone 2G/3G takes hours, while it's only seconds on models after that - the new way is to just toss the encryption key and regenerate a new key, so it takes seconds and not hours (and doesn't wear down the flash)). So one trick is to remove the eMMC chip and read it out directly. Even today most phones are still not encrypted.

      Second, Android App security is good. Android itself, though, is full of security holes making it easy to break in. It doesn't help that OEMs generally screw up and make the machines even more vulnerable. And many security vulnerabilities aren't fixed because of various reasons.

      Android's security is slowly improving, but ti's still pretty bad.

  35. Re:Awesome! by TheFakeTimCook · · Score: 1

    How do you know Cellebrite isn't an Apple funded offshoot to funnel govt money in exchange for backdoors.

    How do we know you're not Vladimir Putin, or worse yet, Steve Bannon?

  36. what about the Secure Enclave? by schweini · · Score: 1

    Last time we were talking about this, the consensus was that, with all it's flaws, the new iPhones are getting security quite right and that the Secure Enclave architecture should be incredibly safe against exactly these attacks.

    Dos anyone know what attack vector they have used here?

  37. This technology ... by NoSalt · · Score: 1

    This technology is just a one-off request. There is no way it can get "out there".

    Said the F.B.I.

  38. Re:And that's why by demonlapin · · Score: 1

    If you trash it, that's destruction of evidence.

  39. Re:One more reason to never own a smartphone by Ol+Olsoc · · Score: 1

    I'm surprised more criminals don't give their phones to someone else while they are breaking the law, to create an alibi. The cops will get the cell records and datarape the phone, generating evidence that can then be used in the criminal's own defence.

    And here's one that always gets me into trouble on Slashdot. I am perfectly happy to have my gas purchases easily found. I even broadcast my position via APRS, which timestamps my location and broadcasts it to the world That's a s part of a hobby. I don't care about cell phone tracking, or video camera recording. While many here think that they need to be ghosts, I've figured that this stuff will stand a better chance of giving me a very good alibi if I need one. Some people who have been accused of crimes have already been exonerated. I've been trying to find the story of a New York man arrested for sexual assault, but his claim of leaving his work at the time proved he was indeed at work at the time. If I do, I will post it.

    --
    The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
  40. Re: And that's why by mmdurrant · · Score: 1

    Dammit Wilco, get off Slashdot and get back to your janitor duties.

    --
    I see my shadow changing, stretching up and over me...
  41. Re: And that's why by DontBeAMoran · · Score: 1

    Alright... I'll just do a quick stop at Monolith Burger first. I heard they have Astro Chicken II: Revenge of the Landing Drone Ship.

    --
    #DeleteFacebook