Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cops Are Confident iPhone Hackers Have Found a Workaround to Apple's New Security Feature (vice.com)

Posted by msmash on from the not-so-soon dept.

Joseph Cox, and Lorenzo Franceschi-Bicchierai, reporting for Motherboard: Apple confirmed to The New York Times Wednesday it was going to introduce a new security feature, first reported by Motherboard. USB Restricted Mode, as the new feature is called, essentially turns the iPhone's lightning cable port into a charge-only interface if someone hasn't unlocked the device with its passcode within the last hour, meaning phone forensic tools shouldn't be able to unlock phones. Naturally, this feature has sent waves throughout the mobile phone forensics and law enforcement communities, as accessing iPhones may now be substantially harder, with investigators having to rush a seized phone to an unlocking device as quickly as possible.

That includes GrayKey, a relatively new and increasingly popular iPhone cracking tool. But forensics experts suggest that Grayshift, the company behind the tech, is not giving up yet. "Grayshift has gone to great lengths to future proof their technology and stated that they have already defeated this security feature in the beta build. Additionally, the GrayKey has built in future capabilities that will begin to be leveraged as time goes on,' a June email from a forensic expert who planned to meet with Grayshift, and seen by Motherboard, reads, although it is unclear from the email itself how much of this may be marketing bluff. "They seem very confident in their staying power for the future right now," the email adds. A second person, responding to the first email, said that Grayshift addressed USB Restricted Mode in a webinar several weeks ago.

69 of 128 comments (clear)

  1. Demo or it didn't happen by TheFakeTimCook · · Score: 4, Insightful

    Talk is cheap.

    Show us a video, or it's just bullshit.

    1. Re: Demo or it didn't happen by Anonymous Coward · · Score: 2, Insightful

      You're not their target audience, and it's probably not in their best interest to post a video.

    2. Re:Demo or it didn't happen by Anonymous Coward · · Score: 2

      I don't know who I am rooting for here. The crooked cops, or the rabid fanbois.

      I suppose I should just get the popcorn and enjoy the show.

    3. Re:Demo or it didn't happen by ColdWetDog · · Score: 1

      Yeah, sometimes it seems like you're on the Titanic....

      Rooting for the iceberg.

      --
      Faster! Faster! Faster would be better!
    4. Re:Demo or it didn't happen by thegarbz · · Score: 1

      Talk is cheap.

      Actually talk is worth $15000 a pop in this case.

    5. Re:Demo or it didn't happen by antdude · · Score: 1

      Video can be fake. Let's see it in person and instructions! Prove it basically.

      --
      Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
    6. Re:Demo or it didn't happen by TheFakeTimCook · · Score: 1

      Video can be fake. Let's see it in person and instructions! Prove it basically.

      True enough!

    7. Re:Demo or it didn't happen by NewYork · · Score: 1

      www.iphoneasyunlock.com

      If you are in the United States of America
      Unlocking Consumer Choice and Wireless Competition Act now repeals former DMCA ruling making once again legal to unlock your cell phone devices.Thanks to the efforts of groups such as fix the DMCA

      --
      Casteism
    8. Re:Demo or it didn't happen by TheFakeTimCook · · Score: 1

      www.iphoneasyunlock.com

      If you are in the United States of America
      Unlocking Consumer Choice and Wireless Competition Act now repeals former DMCA ruling making once again legal to unlock your cell phone devices.Thanks to the efforts of groups such as fix the DMCA

      I don't think "unlock" means what you think it does in this context.

    9. Re:Demo or it didn't happen by KingBenny · · Score: 1

      they had me at "...cops are confident hackers..." el-Mao

      --
      Free speech was meant to be free for all... how can anyone grow up in a nanny state ?
    10. Re:Demo or it didn't happen by TheFakeTimCook · · Score: 1

      they had me at "...cops are confident hackers..." el-Mao

      LOLOL! You're right; that IS hysterical!!!

  2. Oh YEAH?!? by Hallux-F-Sinister · · Score: 2

    And what would the cops do if I just stopped USING my iPhone, didn't carry it, or... hell, didn't even HAVE one?!? NOW WHAT? HUH?!? NOW how are you going to break into it and root around in it, if I don't HAVE ONE?!? HUH?!?

    CHECK, AND MATE, COPPERS!

    (LOL... like I could really live without this damned thing...)

    --
    Our reign has gone on long enough. Indeed. Summon the meteors.
    1. Re:Oh YEAH?!? by 110010001000 · · Score: 1

      For those people who do not have iPhones, they implant a similar system inside one of their teeth. That is the sources of the voices I hear in my head.

    2. Re:Oh YEAH?!? by slew · · Score: 1

      For those people who do not have iPhones, they implant a similar system inside one of their teeth. That is the sources of the voices I hear in my head.

      Something like this? ;^)

    3. Re:Oh YEAH?!? by nnet · · Score: 1

      your pants.
      your grits.
      your mom.
      etc, ad infinitum.

    4. Re:Oh YEAH?!? by Agripa · · Score: 1

      And what would the cops do if I just stopped USING my iPhone, didn't carry it, or... hell, didn't even HAVE one?!? NOW WHAT? HUH?!? NOW how are you going to break into it and root around in it, if I don't HAVE ONE?!? HUH?!?

      That is obstruction of justice and resisting arrest.

    5. Re:Oh YEAH?!? by Hallux-F-Sinister · · Score: 1

      And what would the cops do if I just stopped USING my iPhone, didn't carry it, or... hell, didn't even HAVE one?!? NOW WHAT? HUH?!? NOW how are you going to break into it and root around in it, if I don't HAVE ONE?!? HUH?!?

      That is obstruction of justice and resisting arrest.

      Just for fun, is not actually committing any crime whatsoever classifiable under our new dystopian oligarchy as obstruction and resisting arrest?

      --
      Our reign has gone on long enough. Indeed. Summon the meteors.
    6. Re:Oh YEAH?!? by Hallux-F-Sinister · · Score: 1

      I haven't used a cell phone since 2010. You don't need one. All it is, is a tracking device for the cops.

      Nathan

      It’s funny you should say that because it’s not the first time I’ve heard that expressed, and I’m sure you were either being facetious or hyperbolic, but I have had and used smartphones for a while... I have yet to have the cops... ANY cop, in fact, demand to see or take mine, and I used it for about fifty things just yesterday, which woild seem to be a counter to your charge that it’s only a “tracking device for the cops. Yesterday I... listened to music stored on the phone, downloaded and listened to a podcast, surfed the web extensively, including /., as it happens. I used it to see how many steps I’d taken so far, checked my bank balance, made a (brace yourselves, folks,) PHONE CALL... cancelled and rescheduled an appointment, played solitaire, made a note to myself, checked the time at least twice, used the onboard timer, (could also have used the alarm clock, but being truthful, in this case, I did not, in fact do that, nor use the stopwatch or world clock, though could have,) asked how to spell a word I couldn’t recall how to spell, logged what I ate, (or rather, most of it,) used it as a flashlight, and COULD have taken pics with it, but did not... again, this kind of belies your assertion that it’s norhing more than an electronic leash. Just saying.

      --
      Our reign has gone on long enough. Indeed. Summon the meteors.
    7. Re:Oh YEAH?!? by Agripa · · Score: 1

      And what would the cops do if I just stopped USING my iPhone, didn't carry it, or... hell, didn't even HAVE one?!? NOW WHAT? HUH?!? NOW how are you going to break into it and root around in it, if I don't HAVE ONE?!? HUH?!?

      That is obstruction of justice and resisting arrest.

      Just for fun, is not actually committing any crime whatsoever classifiable under our new dystopian oligarchy as obstruction and resisting arrest?

      There is always a crime. They just have to find it.

  3. Little birdy says by Anonymous Coward · · Score: 1

    The work around is by setting the clock back via the cellular network.

    1. Re:Little birdy says by b0s0z0ku · · Score: 2

      This could be a separate timer, independent from the clock, or any backward changes to the clock could trigger a passcode entry screen. Interesting theory, but it can be easily tested.

    2. Re:Little birdy says by swankiest · · Score: 1

      little hard only due to the specialized setup required (openbts and potentially a cage.)

    3. Re:Little birdy says by Anonymous Coward · · Score: 1

      GPS also has timestamps. source: fighting a GPS module on an embedded board ~8 years ago.

    4. Re:Little birdy says by Anonymous Coward · · Score: 1

      GPS timestamp rolls over every 1024 weeks.

    5. Re:Little birdy says by CanHasDIY · · Score: 1

      After 20 years, they can have my data.

      --
      An enigma, wrapped in a riddle, shrouded in bacon and cheese
    6. Re:Little birdy says by Mister+Transistor · · Score: 1

      All it takes is a StingRay and a 6 dB advantage over the cellular network to achieve FM capture. No Faraday cage required!

      --
      -- You are in a maze of little, twisty passages, all different... --
  4. Not only cops ... by b0s0z0ku · · Score: 5, Insightful

    How many times do people charge their phone off a "public" USB charge port in an airport or on public transportation? Any one of those ports could be trying to slurp confidential data. Charge-only without authentication and permission should be default behavior for all phones.

    Also, this isn't only about the US government and US police trying to unlock phones. This also protects US citizens against abuses by foreign governments -- i.e. the Chinese or Venezuelans confiscating someone's phone at an airport and "working on it."

    Not to mention that not all US law enforcement are the good guys. Plenty of corrupt cops out there who want to snoop without a warrant.

    1. Re: Not only cops ... by ThurstonMoore · · Score: 1

      I never have.

    2. Re: Not only cops ... by b0s0z0ku · · Score: 1

      "People" being the average worker bee, not a tech-savvy Slashdotter.

    3. Re: Not only cops ... by Demena · · Score: 1

      Two special snowflakes as I have never used a pubic charger either, although I do use pubic power points. This is the case because I always carry a small charger and a power brick for when there is no power point. Not for any security reason but for convenience. The brick also will jump start my car. So I might suggest it is not as uncommon as you think.

    4. Re: Not only cops ... by Demena · · Score: 1

      Ha, ha, try again, AC.

      And it is highly unlikely that I am statistically insignificant. There are not a lot fo public chargers here. Never actually seen one.

  5. Re:This is such ridiculous bullshit... by fish_in_the_c · · Score: 1

    controlling something remotely is different then accessing it once it is off the network and shut off.

    Still, if you are going to do something illegal , it is best not to create a record of it. ( and probably better just not to do it).

    If you are in a country where you feel the need to engage in acts of civil disobedience in the modern age. Good luck and God bless.
    Also, find a way to get a some cheap disposable mobile phones and don't keep them long term.

    --
    âoeTolerance applies only to persons, but never to truth. Intolerance applies only to truth, but never to persons.
  6. There is a plan for that by Anonymous Coward · · Score: 1

    And what would the cops do if I just stopped USING my iPhone, didn't carry it, or... hell, didn't even HAVE one?

    Oh they have a tool for that also, but I don't think you are going to enjoy it much...

    It's called "GraySkull".

    They have the power.

    1. Re:There is a plan for that by Lab+Rat+Jason · · Score: 1

      It's called the "pear of anguish"... don't look it up.

      --
      Which has more power: the hammer, or the anvil?
    2. Re:There is a plan for that by Mips+the+Cat · · Score: 1

      It's called ginger beer trick.

  7. Re:Why by b0s0z0ku · · Score: 1

    Because many people have auto-lock set to 1 minute - they'd lose the ability to download more than a fews pictures unattended and end up generating support calls. (Assuming people still do cloudfree picture downloads via USB.)

  8. Bluff = Stupidity by Rick+Zeman · · Score: 4, Insightful

    "Grayshift has gone to great lengths to future proof their technology and stated that they have already defeated this security feature in the beta build"

    Umm, if true, how stupid of them to say it.

    1. Re: Bluff = Stupidity by BronsCon · · Score: 1

      Indeed. In this case, GrayShift is the cat.

      --
      APK quotes people (including myself) without context and should not be trusted. Just thought you should know.
    2. Re: Bluff = Stupidity by Rick+Zeman · · Score: 1

      "How is it stupid? "

      Because the OS is still in beta, it means Apple can fix/change how it works before release.

      5 bucks says Apple either has/has access to a Graykey.

    3. Re:Bluff = Stupidity by eth1 · · Score: 1

      "Grayshift has gone to great lengths to future proof their technology and stated that they have already defeated this security feature in the beta build"

      Umm, if true, how stupid of them to say it.

      Or.... they HAVEN'T figured it out, and are trying to get Apple to change something to "fix" it, and possibly introduce a bug/way in with the additional changes...

  9. Charging from public outlets by Alwin+Henseler · · Score: 1

    How many times do people charge their phone off a "public" USB charge port in an airport or on public transportation? Any one of those ports could be trying to slurp confidential data.

    If you rely on either your phone's security, or trusting whatever 3rd party provides a charge port, you're doing it wrong.

    Just use a charge-only cable that has only power wires, but no data lines in it. Or bring an AC -> DC adapter as well, and use an AC mains outlet. Or bring a powerbank. Or charge from your laptop.

    1. Re:Charging from public outlets by slew · · Score: 1

      How many times do people charge their phone off a "public" USB charge port in an airport or on public transportation? Any one of those ports could be trying to slurp confidential data.

      If you rely on either your phone's security, or trusting whatever 3rd party provides a charge port, you're doing it wrong.

      Just use a charge-only cable that has only power wires, but no data lines in it. Or bring an AC -> DC adapter as well, and use an AC mains outlet. Or bring a powerbank. Or charge from your laptop.

      And hope your phone doesn't have the blueborne vulnerability which renders all of your efforts moot.

  10. GrayShift has time machines! by InvalidsYnc · · Score: 2

    Additionally, the GrayKey has built in future capabilities that will begin to be leveraged as time goes on

    Holy Crap! Should invest in those guys because they are from the future, so much so they have built in capabilities for bugs and security features that don't exist yet! So sweet! (Other than that, sounds like marketing on GrayShift's part)

    1. Re:GrayShift has time machines! by slew · · Score: 5, Insightful

      Additionally, the GrayKey has built in future capabilities that will begin to be leveraged as time goes on

      Holy Crap! Should invest in those guys because they are from the future, so much so they have built in capabilities for bugs and security features that don't exist yet! So sweet! (Other than that, sounds like marketing on GrayShift's part)

      A more "rational" explanation is that Grayshift is sitting on (or at least wants people to believe they are sitting on) a few-zero day exploits that they think will keep them in business for the foreseeable future...

      Given the fact that the principals working at Grayshift are ex U.S. intelligence agency contractors and ex-Apple security engineers, I wouldn't be so quick to bet against them having a few zero-days lying around...

    2. Re:GrayShift has time machines! by Anonymous Coward · · Score: 1

      You say potato, I say potato. You say zero-day exploit, I say backdoor.

    3. Re:GrayShift has time machines! by ksw_92 · · Score: 1

      Given the fact that the principals working at Grayshift are ex U.S. intelligence agency contractors and ex-Apple security engineers, I wouldn't be so quick to bet against them having a few zero-days lying around...

      ...and we know that ex-spooks and ex-Apple employees are all-knowing and all-powerful and that Apple will *never* change out the current interfaces for something different, right?

      The problem with zero-day xploits is that they have a "best by" date and once you open them up they tend to get fixed quickly.

      Greyshift is sitting on rotting inventory and has to resort to "ooh, scary" tactics to shift product. Not a sustainable business model. This kind of stuff is like using K-9s anyway. If a LEO likes you for something they'll find a way to git-r-done.

    4. Re:GrayShift has time machines! by Freischutz · · Score: 1

      Additionally, the GrayKey has built in future capabilities that will begin to be leveraged as time goes on

      Holy Crap! Should invest in those guys because they are from the future, so much so they have built in capabilities for bugs and security features that don't exist yet! So sweet! (Other than that, sounds like marketing on GrayShift's part)

      Whenever I hear some corporate drone use words like 'leveraged' and 'synergised' I immediately suspect them to be full of shit.

  11. DMCA by cob666 · · Score: 3, Insightful

    How is this not a violation of the DMCA? Couldn't Apple simply bury these companies under mountains of lawsuits to make them go away?

    --
    Do what thou wilt shall be the whole of the Law - Aleister Crowley
  12. Re:This is such ridiculous bullshit... by MyrddinBach · · Score: 1

    How about get a phone that supports wireless charging then physically destroy the usb port.

  13. what about an very local tower with Emergency call by Joe_Dragon · · Score: 1

    what about an very local tower with some kind of Emergency call mode that unlocks stuff?

  14. law enforcement is dmca exempt! by Joe_Dragon · · Score: 2

    law enforcement is dmca exempt!

  15. Wait a tick... by TimMD909 · · Score: 3, Insightful

    Aren't the cops and their vendors violating the DMCA by hacking into Apple's phones?

    1. Re:Wait a tick... by CanHasDIY · · Score: 2

      +1 to Apple sending DMCA/CFAA notices to police departments across the nation...

      --
      An enigma, wrapped in a riddle, shrouded in bacon and cheese
    2. Re:Wait a tick... by SeaFox · · Score: 3, Insightful

      I guess the cops don't see the irony in their cheering for lawbreakers.

    3. Re: Wait a tick... by adamstew · · Score: 1

      Actually, that's exactly how lawsuits are won. https://www.law.cornell.edu/we...

  16. Re:Confused by BlueStrat · · Score: 4, Insightful

    Since hacking is illegal, why are cops buying from Grayshift instead of raiding their offices?

    Because in practice it's only illegal to hack those whom the State favors. Hacking those who are not in the State's (and the corrupt individuals in power's) good graces for whatever reason is A-OK, especially if the State gets the benefit of obtaining the data in readable form. The only real exception to this is if the hacker(s) in question are also not seen favorably by those in power.

    Strat

    --
    Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
  17. Re:law enforcement is dmca exempt! by Anonymous Coward · · Score: 1

    Does the exemption extend to a non government software vendor?

  18. Re:Confused by CanHasDIY · · Score: 3, Insightful

    Also, GreyShift is an Israeli company, and historically the US government kowtows to Israel like nobody's-fucking-business.

    --
    An enigma, wrapped in a riddle, shrouded in bacon and cheese
  19. Re:law enforcement is dmca exempt! by Anonymous Coward · · Score: 1

    They aren't a US company. True, by selling to US persons they are availing themselves of US law but I suspect that the law enforcement exemption covers the sales to law enforcement and the law doesn't reach their R&D activity in Israel.

  20. Shut them down! by Quzak · · Score: 1

    Companies such as GreyKey should be sanctioned and their owners and developers brought up on hacking charges! They have no right to circumvent security technologies PERIOD! We as a society need to embrace security, even if that means that some bad guys will go free. We must not allow ourselves to fall prey to the machinations of those who would see an Orwellian world made manifest.

    --
    Support your local school shooter, give them your firearms.
  21. Portable USB device to Extend Timeout by Anonymous Coward · · Score: 1

    I bet they are just giving out little USB dongle type devices that a cop would connect to the phone upon arrest. This would likely keep the USB port unlocked passed the timeout...

  22. Re:This is such ridiculous bullshit... by AHuxley · · Score: 2

    Re "Do you all actually believe this?"
    PRISM https://en.wikipedia.org/wiki/... showed the USA and UK had ways in. Direct and for years. That US brands made junk crypto code to help the NSA.
    The software and device and brand, all 'approved' updates then becomes a part of a NSA collect it all network.
    End-to-end encryption is offered to keep gov workers and police under internal affairs investigation trusting their new devices.
    Without repeated and updated reassuring tech news that the brand is still safe digital collection globally stops for the NSA.
    PRISM and BULLRUN https://en.wikipedia.org/wiki/... DROPOUTJEEP https://en.wikipedia.org/wiki/... .
    The device and the network, the brands and the telcos are all open to gov/mil experts.
    The only trick is to keep most users thinking the next product line will be secure because?
    Brand reputation? Politics? Stock market? Lawyers? Skill of staff?
    PRISM showed who experts are happy to be working for and with. Big government.

    --
    Domestic spying is now "Benign Information Gathering"
  23. Well, the fastest way to put a stop to this by nehumanuscrede · · Score: 2

    is for the next person who gets arrested and has their phone subjected to such hacking measures is to simply challenge it in court and demand to see everything about the extraction / bypass process.

    After all, since you ARE hacking into the phone, we need to verify it's doing nothing nefarious and / or corrupting the data contained within it.

    Much like how the LE Community will drop charges without revealing how / when / where they are using Stingrays, they'll drop the charges before they're forced to show their hand here as well.

  24. Coming soon... by hyades1 · · Score: 2

    I wonder how long it will be until somebody figures out how to implement a "dead man's switch" requiring a code to be entered at user-determined intervals, or the device would use all its remaining battery power to commit suicide.

    I have a feeling it wouldn't be easy to extract data from a phone that decided to do its very best impression of a Note 7.

    Added bonus: potential havoc at the cop shop.

    --
    I've calculated my velocity with such exquisite precision that I have no idea where I am.
  25. Re:Why by Demena · · Score: 1

    Immediate fail, tosser. (1) Apple decided privacy was important long, long before the Facebook hysteria. (2) Apple security is better than the opposition and always has been so they do not need to do work that has been done. Instead they improve.
    You seem to have a five minute life. Anything that happened ten minutes ago is background blur to you.

  26. Re: Why by Demena · · Score: 1

    Nah, lots of morons of any age do that. It is even semi legitimate as English has grammatical indication for a long 'o'.

  27. Why Wait An Hour? by WiseWeasel · · Score: 1

    This has always struck me as a dumb implementation. Why not simply require passcode to enable USB data mode with no timer? Plug in USB, get prompted for passcode. No passcode, no data.

    --
    "I like systems, their application excepted", George Sand (French)
  28. Re:This is such ridiculous bullshit... by MrKaos · · Score: 1

    That was a joke. The irony of acknowledging how serious what AHuxley has posted - which kind of makes it funnier considering who wants access to your phone. Tough crowd.

    --
    My ism, it's full of beliefs.
  29. Re: Why by Highdude702 · · Score: 1

    That is exactly what i do with my iPhone 6(hopefully it lasts a while, new models suck)