Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Any way to guard against iphone unlocking software in case of theft?

doobydoooby

doobydoooby

macrumors 6502
Original poster
Oct 17, 2011
259
382
Genève, Switzerland
I was under the impression that a locked phone (+screen time lock) was useless to a thief these days because of the activation lock, but software apparently can completely clean any iPhone in case you "forgot" your lock code, Apple ID, etc... allowing anyone to steal your iPhone and reset it as new. AnyMP4 is an example, but there seem to be quite a few out there.

I'm relieved that they seem to work only by resetting the phone's data, so at least your data will be gone. But is there anything we can do to guard against this other than keeping iOS up to date?
 
  • Like
Reactions: arc of the universe and splifingate
Never heard of this software, but I'm not surprised.
Best advice is to get the AppleCare with theft/loss protection so you are not out a phone if it happens.

Only other advice I can give is to not be a desirable target for thieves. Demonstrate situational awareness. If you are oblivious to the people around you and have your head buried in your phone in public, you become a more tempting target. Walk tall: eyes up, shoulders back, long steps. Make eye contact with people. Even say hi to strangers. Being confident makes you less likely to be a victim.
 
doobydoooby said:
I was under the impression that a locked phone (+screen time lock) was useless to a thief these days because of the activation lock, but software apparently can completely clean any iPhone in case you "forgot" your lock code, Apple ID, etc... allowing anyone to steal your iPhone and reset it as new. AnyMP4 is an example, but there seem to be quite a few out there.

I'm relieved that they seem to work only by resetting the phone's data, so at least your data will be gone. But is there anything we can do to guard against this other than keeping iOS up to date?
Click to expand...
I would add Stolen Device Protection to that list of protective services that needs to be switched on.
It buys you a bit of time to wipe or lock the phone so that it can't be used to get into your account and steal data or take over the phone.

About Stolen Device Protection for iPhone - Apple Support

Stolen Device Protection adds a layer of security when your iPhone is away from familiar locations, such as home or work.
support.apple.com support.apple.com
 
  • Like
Reactions: southnorth, doobydoooby, splifingate and 1 other person
doobydoooby said:
I was under the impression that a locked phone (+screen time lock) was useless to a thief these days because of the activation lock, but software apparently can completely clean any iPhone in case you "forgot" your lock code, Apple ID, etc... allowing anyone to steal your iPhone and reset it as new. AnyMP4 is an example, but there seem to be quite a few out there.

I'm relieved that they seem to work only by resetting the phone's data, so at least your data will be gone. But is there anything we can do to guard against this other than keeping iOS up to date?
Click to expand...
I didn’t research fully but looking at a couple of articles, anymp4 seems to just erase the phone - which you can do using iTunes or the Finder on a Mac anyway. I don’t see that it helps with Activation Lock, which is an Apple server-based lock (not anything to do with the iPhone itself other than the serial).
 
  • Like
  • Love
Reactions: addamas, kitKAC, Tagbert and 3 others
doobydoooby said:
I was under the impression that a locked phone (+screen time lock) was useless to a thief these days because of the activation lock, but software apparently can completely clean any iPhone in case you "forgot" your lock code, Apple ID, etc... allowing anyone to steal your iPhone and reset it as new. AnyMP4 is an example, but there seem to be quite a few out there.

I'm relieved that they seem to work only by resetting the phone's data, so at least your data will be gone. But is there anything we can do to guard against this other than keeping iOS up to date?
Click to expand...
Only way I know to stay ahead of the curve, is to always use recent hardware with recent software.

Oh, and don't let your hardware get into the hands of others ;)
 
doobydoooby said:
I was under the impression that a locked phone (+screen time lock) was useless to a thief these days because of the activation lock, but software apparently can completely clean any iPhone in case you "forgot" your lock code, Apple ID, etc... allowing anyone to steal your iPhone and reset it as new. AnyMP4 is an example, but there seem to be quite a few out there.

I'm relieved that they seem to work only by resetting the phone's data, so at least your data will be gone. But is there anything we can do to guard against this other than keeping iOS up to date?
Click to expand...
Only way to remove activation lock is to remove the cpu and a couple more chips then replace them with chips that are from the same model iPhone that isn't activation locked. Many YouTube videos on the procedure. You need board level solder skills to accomplish this unless you live in Hong Kong, then you just go downtown and there are many shops that can do it.
 
  • Like
Reactions: addamas, arc of the universe, 960design and 1 other person
doobydoooby said:
I was under the impression that a locked phone (+screen time lock) was useless to a thief these days because of the activation lock, but software apparently can completely clean any iPhone in case you "forgot" your lock code, Apple ID, etc... allowing anyone to steal your iPhone and reset it as new. AnyMP4 is an example, but there seem to be quite a few out there.

I'm relieved that they seem to work only by resetting the phone's data, so at least your data will be gone. But is there anything we can do to guard against this other than keeping iOS up to date?
Click to expand...
All I really need is to prevent my data from being accessed outside my control. As far as I am concerned once my phone is stolen (it has never happened) I doubt that I will ever get it back again. I lost a phone once - an Android phone in 2011, long before things like Find My and activation lock - and I was able to get it back, as I guessed where I lost to and was able to go back and retrieve it - it was returned to a lost-and-found at a rest stop.

So what happens to it once it is stolen is fine with me, as long as my data remains inaccessible.
 
FreakinEurekan said:
I didn’t research fully but looking at a couple of articles, anymp4 seems to just erase the phone - which you can do using iTunes or the Finder on a Mac anyway. I don’t see that it helps with Activation Lock, which is an Apple server-based lock (not anything to do with the iPhone itself other than the serial).
Click to expand...

This.

I too have not researched this to any great length but these "solutions" tend to be scams.

The ones that actually do work (read: the ones that 3-letter agencies buy) can be limited in functionality due to these seem to use jailbreaks or some bug that can be exploited to get a toe-hold onto the device, and even then, can vary from device to device and OS in use re ability to get in.

So as has been mentioned, Find My to turn on Activation Lock, use a passcode that's not 4 or even 6 numbers, make it alpha-numeric-special (if really want to use just digits, can make a long passcode that's >6 with just numbers via the complex option). Use biometrics so you don't have to be typing in passcode every time for someone to shoulder surf off of. Set a "Lock screen after..." value that is not geologic time. And be situationally aware: does one REALLY need to be on the street staring at their screen at that moment?
 
  • Like
Reactions: addamas, kitKAC, Pierre535 and 1 other person
doobydoooby said:
I was under the impression that a locked phone (+screen time lock) was useless to a thief these days because of the activation lock, but software apparently can completely clean any iPhone in case you "forgot" your lock code, Apple ID, etc... allowing anyone to steal your iPhone and reset it as new. AnyMP4 is an example, but there seem to be quite a few out there.
Click to expand...
Please give an example (and link) of a software. AnyMP4 does not assist in wiping an activation locked iPhone.
My previous job had me running a research team to access mobile devices, specializing in Apple hardware/software. Any 'send your phone off to be unlocked' is a scam. The scammers disassemble your device and mail the parts to hong kong to sell the parts for a dozen US dollars or so.

doobydoooby said:
I'm relieved that they seem to work only by resetting the phone's data, so at least your data will be gone. But is there anything we can do to guard against this other than keeping iOS up to date?
Click to expand...
Certainly.
Personal:
Create a complex iCloud password to prevent brute forcing and/or rainbow table hashing.
Do not share with anyone.

Business/Other:
All of my Apple devices are purchased through Apple Business and have the additional protection of MDM (mobile device management) even before the devices arrive to my location.
 
Last edited:
  • Like
Reactions: kitKAC, doobydoooby and ManuCH
960design said:
Please give an example (and link) of a software. AnyMP4 does not assist in wiping an activation locked iPhone.
My previous job had me running a research team to access mobile devices, specializing in Apple hardware/software. Any 'send your phone off to be unlocked' is a scam. The scammers disassemble your device and mail the parts to hong kong to sell the parts for a dozen US dollars or so.


Certainly.
Personal:
Create a complex iCloud password to prevent brute forcing and/or rainbow table hashing.
Do not share with anyone.

Business/Other:
All of my Apple devices are purchased through Apple Business and have the additional protection of MDM (mobile device management) even before the devices arrive to my location.
Click to expand...
I was under the impression that if the Apple ID associated with the phone was removed, then the activation lock was removed. Is that not the case? I would be very happy if there's a distinction! I'm no expert; I just found their tutorial looks like a complete toolbox to crack a stolen phone: https://www.anymp4.com/iphone-unlocker/tutorials.html
 
doobydoooby said:
I was under the impression that if the Apple ID associated with the phone was removed, then the activation lock was removed. Is that not the case? I would be very happy if there's a distinction! I'm no expert; I just found their tutorial looks like a complete toolbox to crack a stolen phone: https://www.anymp4.com/iphone-unlocker/tutorials.html
Click to expand...
It SAYS it can... ¯\_(ツ)_/¯

It does completely erase the phone in the process, according to that - so information is safe either way.
 
doobydoooby said:
I was under the impression that if the Apple ID associated with the phone was removed, then the activation lock was removed. Is that not the case? I would be very happy if there's a distinction! I'm no expert; I just found their tutorial looks like a complete toolbox to crack a stolen phone: https://www.anymp4.com/iphone-unlocker/tutorials.html
Click to expand...
The website is highly misleading and that is on purpose, so that misguided people will buy their product. You can't unlock a locked Apple ID phone with that software.
 
  • Like
Reactions: doobydoooby, doogm, NoBoMac and 1 other person
Obvious things to look out for but unfortunately a lot of people prefer convenience over security.

Don’t re-use passcodes which are already in use for banking/finance apps (I’ve warned off friends about doing this). Use biometrics for banking apps.

And don’t store sensitive information in Notes. Also set up account restrictions in Screen Time.

Always use biometrics and never use passcodes in bars and restaurants. There’s always a chance someone will see and memorise your code and snatch the device.
 
Does anyone know if you still get e-mail notifications if you use the Face ID app lock for GMail and the IOS Mail apps?

(the context here being that an attacker who snatched your unlocked phone / shoulder-surfed your PIN could use those e-mail accounts to reset passwords and potentially cause a lot of damage)
 
AstonSmith said:
Does anyone know if you still get e-mail notifications if you use the Face ID app lock for GMail and the IOS Mail apps?

(the context here being that an attacker who snatched your unlocked phone / shoulder-surfed your PIN could use those e-mail accounts to reset passwords and potentially cause a lot of damage)
Click to expand...
No, notifications are suppressed for those apps. But if someone shoulder-surfed your iPhone passcode they can fail the Face ID a couple of times and enter the passcode instead to open the app.

Lock or hide an app on iPhone

Lock or hide or an app on iPhone so that others can’t see it or view the information in it.
support.apple.com
 
  • Like
Reactions: I7guy and AstonSmith
Puonti said:
No, notifications are suppressed for those apps. But if someone shoulder-surfed your iPhone passcode they can fail the Face ID a couple of times and enter the passcode instead to open the app.

Lock or hide an app on iPhone

Lock or hide or an app on iPhone so that others can’t see it or view the information in it.
support.apple.com
Click to expand...
There are a number of things one can do to protect against shoulder surfing. Most of them involve situational awareness but one involves turning on Stolen Device Protection. There are also configuations that can be applied in case an unlocked phone is snatched from your hand.
 
  • Like
Reactions: doogm and Puonti
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back