Apple fans think that their devices are protected and are unhackable the Cupertino tech giants keep appearing in security stories from time to time. The day before Yesterday a researcher was sharing decryption key of Apple’s secure Enclave processor. While that story was more of o “look into OS” than iPhone hack. But this, this story will really make you go insane.
EverythingApplePro, a popular YouTuber, has apparently stumbled upon a hacking device that can crack open any iPhone 7 or iPhone 7 Plus handset. Costing only $500, the “iPhone hack box” uses an exploit in the update process to brute force and bypass the lock screen passcode of up to three iPhone 7 and iPhone 7 Plus units at a time. It apparently works only on iOS 10.3.3 and iOS 11 beta and only on the latest iPhone 7 duo.
This iPhone hack box doesn’t work on older iOS version or older iPhones
This box has three USB ports and reportedly doesn’t work on older iOS devices. YouTuber said an attacker has broken into iPhone 7 which doesn’t have iOS 10.3.3 or even iOS 11 betas, they can import iOS 10.3.3 to launch the brute-force attack and worse thing is they don’t even need a passcode to install latest iOS software.
“They found a loophole in the data recovery state that allows you to use as many passcode attempts as you want,” the YouTuber explained. The update process is crucial for the iPhone hack to work since it uses a vulnerability in the process.
If the target iPhone is on iOS 10.0 to 10.3.2, attackers can update to iOS 10.3.3 for it to work on:
- iOS 10.3.3, update to iOS 11 beta
- iOS 11 beta, downgrade to iOS 10.3.3
In the video, the YouTuber demonstrates the process by connecting the iPhone 7 to a MacBook Pro running Windows, placing the phone in DFU mode. An app called 3uTools is used to force the handset to update without a passcode.
Since this is a typical brute force attack, EverythingApplePro did note that it could still take the hacking device a few days to crack open your iPhone – still not a small feat. The Federal Bureau of Investigation had made a huge ruckus last year when it demanded Apple to help it crack open an iPhone 5c, which is way more insecure than the latest generation of iPhones.
Even at that time, some security researchers had said that the FBI could unlock the iPhone in under $100. FBI had reportedly paid over $900,000 to get the 5c unlocked.