LMFAO! Yes you do making ridiculous claims because your iPhone was set up wrong. When you setup a screen time if you have bypass the option that says “allow Apple ID to reset screen time password”, or however it’s worded exactly.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Responds to Report About Thieves Spying on iPhone Passcodes to 'Steal Your Entire Digital Life'
- Thread starter MacRumors
- Start date
- Sort by reaction score
You obviously didn't read my post #302 and try it on your own phone. It can still be bypassed by the device passcode. Others have confirmed in both this forum and others. You are making yourself look foolish...lol!
Now if you would like to do this and then post a video of the entire process that this gets reset also that would be called proof. Otherwise all of this is anecdotal.
Attachments
Now on your second screenshot, put in your Apple ID, press enter, then select forget Apple ID password. Boom...Apple ID can now be reset by device passcode!
Just need the glanced passcode to undo Lost Mode and then the AppleID password to re-enable Apple Pay. The latter I can just change knowing the device passcode. That last bit is the problem.
That’s what I thought you totally missed the point of the process of setting up a screen time password.
I kept my iPhone 8 for this reason. When I'm out (and drinking the night away) I just tether it to my iPhone 11 which stays in a front pocket. Then I can use my iPhone 8 for pretty much everything else, with the final iteration and fastest version of Apple's Touch ID.
While calling it a life saver would be a little hyperbolic, during the pandemic where face masks in public were mandatory, it really was convenient not to have to enter a PIN every time you wanted to check you messages.
Moreover, were my iPhone to get stolen (Japan, so unlikely... but if...) then it would hardly be a major loss anyway.
I’m not going round and round with some poster whose only evidence is some verbal sparring.
As I said, citation from an authoritative source goes a long way, but here is my anecdotal evidence. I tried to reset my screen time password and couldn’t do it.
Access was required to either a trusted number or the password of another one of my apple devices.
This is assuming the ne’er do well could figure out your Apple ID. Every second the thief is trying to break into your phone the more time you have to wipe it.
TIL there are people who still have numeric passcodes on their iPhones??? The right time to change to a long alphanumeric passphrase was many years ago. Especially since you don’t have to type it in all the time, because TouchID/FaceID.
Even without setting up your Apple ID as recovery for screen time password, it will still ask for Apple ID when you take the forget PW option on the change screen time password option. And you can still do the forget Apple ID password on that recovery to reset Apple ID password.
That option wasn’t presented for screen time password recovery.
But as I said with screen time enabled getting hold of your Apple ID is harder and gives you more time to wipe the phone.
The biggest vulnerability is Apple Pay depending on how you other financial apps are setup. When you change the password Face ID is deactivated. Most financial apps to setup face id require an account password.
I thought that too.. but then I went to https://appleid.apple.com/ on the phone and may have used profanity.
Post your screenshot after you select "Change Screen Time Passcode" -> "Change Screen time Passcode"
It will show the below flawed Forget Passcode workflow and reset.
Attachments
Last edited:
Depends on the business you work in or the laws concerning fingerprints. Also many people switched "back" to using passcodes in mask wearing countries, if you didn't have a phone that supports FaceID with mask.
How is the thief going to know your Apple ID? If screen time password with appropriate content restrictions is enabled your Apple ID is not readily visible.
If you want to prove this could be done please post a complete chronology , because it’s your claim you are welcome to prove it.
I get a popup at the bottom (that I can't screenshot) stating "Do you want to sign in to appleid.apple.com with your Apple ID "myappleid@mail.com"?"
Is there a way to prevent that? I don't have my AppleID password saved in Keychain. Screen Time restrictions enabled of course.
Going to https://appleid.apple.com/sign-in on the device, displays the Apple ID's main e-mail address. Try it yourself on your device.
Apple Watch fan here and embarrassed to admit that I would have never remembered that my Watch has that feature. [edit: it’s cellular with an active plan] Before just now, I’ve never even opened that app. And yeah, a moot point if the passcode was compromised, so back to my plan to turn my iPhone into something more like an iPod (that can make calls).
This article and thread is a wake up call for me about my digital housekeeping and, surprisingly, my lack of understanding of my Apple ID and gear.
Last edited:
The means of changing your Apple ID password from your iPhone using the passcode is not new. That said, even if went to the next level to add physical security keys and advanced data protection, you can use your passcode to remove them. Apple needs to rethink that process for sure but the scenario of a thief shoulder surfing your passcode seems to forget that most people would be using Face ID most of the time and rarely entering the passcode.
That would be IF you have a cellular Apple Watch or connected on WiFi with your Apple Watch.
That is true. That did happen. But it still remains to be determined if the screen time password can be overridden. I couldn’t go in that direction. It went round the horn with trusted devices. But I’d like to see how someone could do it, if possible.