A Russian-based cyber security company claims to have found a way to access data for a protected iPhone, and Elcomsoft, which sells tools to law enforcement agencies to access unlocked iPhones, said: It is now able to extract some data from locked iPhones and iPads running with any version. From iOS 12.0 to 13.3, even within the most secure mode (BFU).
BFU devices are phones that have been turned off or restarted and not later unlocked by entering the correct screen lock passcode, so iPhone content should remain securely encrypted until the user enters the screen lock passcode, which is necessary to generate a key Encryption and decryption of the iPhone file system.
The Russian company is selling the Elcomsoft iOS Forensic Toolk toolkit for $ 1,495, and says the tool works even after restart, as it takes advantage of a security issue known as Checkm8 on some iPhone and iPad models, which relates to exploiting a vulnerability found in most A-series chipse
The Russian company discovered that some of the data in the key chain, where Apple stores user passwords and other protected information, can already be accessed before the user unlocks the phone, and this data includes user names and passwords for e-mail.
It is reported that the tool works on iPhone and iPad devices running the latest version of the iOS operating system, iOS 13.3, but it does not work on all models, as the devices that include the A12 chip, such as the iPhone XR, or the U1 chip, such as the iPhone 11, are immune to the problem Affected by iPhone 5S, 6, 6s, SE, 7, 8, as well as the Plus versions with previous A-series A7 to A11 chipsets.
0 Comments