Cloning Someone's iPhone

kolax · Oct 20, 2013

I got my iPhone 5 swapped at the Apple Store yesterday, and the genius took it through the back for a few minutes after I had entered my passcode.

I'm being insanely paranoid here, but would it be possible for someone to take a backup of my iPhone, then restore it onto another iPhone and get access to all my stuff?

maflynn · Oct 20, 2013

Yeah, I'd say its possible. Is likely to occur though, I'm not sure.

Why did the genius take into the back room after you unlocked it?

kolax · Oct 20, 2013

maflynn said:
Why did the genius take into the back room after you unlocked it?

I've no idea. I felt like questioning him when he came back. Hopefully nothing malicious..

Gav2k · Oct 20, 2013

This is normal as most the genius's aren't senior. They take it out back for authorisation usually.

scaredpoet · Oct 20, 2013

Apple stores use this device for "cloning" iOS devices:

It's called the Cellebrite UME36Pro. It's job is basically, take an image of the data from an unlocked cell phone, and transfer it to a new device.

Apple store employees use these guys whenever a device swap is necessary, and there's doubt as to whether a user has an iCloud backup of their data. If you don't use iCloud, or appear particularly clueless about it, they'll use the Cellebrite devices to transfer data over to any replacements, so you can still walk out of the store with a working iDevice with all your data and apps.

The devices can also be used when someone is buying an iPhone and wants to migrate their data from a different device, like a dumbphone or some Android/Blackberry/Windows phone models. Contacts info, texts, and basic phone history data can be migrated over. Apps and other platform-specific things, obviously won't transfer.

For this device to work, the phone HAS to be unlocked. The cloning process takes a couple minutes. The devices aren't supposed to be out in the open like this. Why they were out when I was at an Apple store I'll never know, but I didn't pass up the opportunity to snap a photo.

Now, if you want to take the tinfoil hat perspective: theoretically, yes, a person using this device on your passcode-unlocked iPhone could take all of its contents and store it on an SD card. Could they replicate it on multiple other devices? Yes, they could.

In fact, there's a law enforcement version of this device that does exactly this, along with some additional software to brute-force through weak 4-digit passcodes, and download the image to a PC for forensic analysis, including looking for fragments of deleted data.

Would an Apple store employee do that? Well, they're not supposed to. Once they've done what they need to do with your phone exchange, the image is supposed to be deleted. Whether that happens or not of course depends on the Apple store employee being ethical enough to do so. You kinda have to trust that they are.

If you don't trust them with your data, then your best bet is to use iCloud backups. If you don't trust Apple at all with your data, then make local encrypted backups on your desktop through iTunes. And never hand an Apple store employee an unlocked iOS device, unless it's been wiped.

thelatinist · Oct 20, 2013

scaredpoet said:
The devices aren't supposed to be out in the open like this. Why they were out when I was at an Apple store I'll never know, but I didn't pass up the opportunity to snap a photo.

I've been to the Genius Bar three times in the last couple of weeks alone) and every time they've had one or two of these devices sitting on the counter. It did not appear they were particularly secretive about it.

kolax · Oct 20, 2013

I took away an uncloned iPhone because I took a backup there and then with my Mac at the desk.

It was more what was he doing with my phone unlocked through the back. If he was just verifying with a manager, fair enough. Just seems a little dodgy to me.

I get paranoid when a waiter takes my card away only to come with back my card in the card machine.

ct2k7 · Oct 20, 2013

Kilamite said:
I get paranoid when a waiter takes my card away only to come with back my card in the card machine.

All the waiters I come across come with the machine and perform the final EPOS functions there and then. My card does not leave my sight.

scaredpoet · Oct 20, 2013

Kilamite said:
I took away an uncloned iPhone because I took a backup there and then with my Mac at the desk.

Then he probably did nothing to your phone, save verify with a manager like he said.

Did he have you wipe your phone before you left the store?

kolax · Oct 20, 2013

ct2k7 said:
All the waiters I come across come with the machine and perform the final EPOS functions there and then. My card does not leave my sight.

Yeah most do that for me too. Just when they disappear with my card, it really does annoy me.

scaredpoet said:
Then he probably did nothing to your phone, save verify with a manager like he said.

Did he have you wipe your phone before you left the store?

Yes, and I'm overreacting and being paranoid. It was just I thought about what all you could do if you have a backup of someone's iPhone - you'd have a key to their entire life unlocked. Emails, contacts, photos, messages all freely available to read.

7thson · Oct 20, 2013

Just to be clear, cloning involves a lot more than copying your data:

http://en.wikipedia.org/wiki/Phone_cloning

If an Apple employee actually "cloned" your iPhone, the holder of that clone would effectively hijack your mobile account. This is usually done as discretely as possible, as to evade detection, because it's kinda illegal. Unless being performed by law enforcement (see the excellent documentary series The Wire for more on this

). If an Apple store employee did this, it wouldn't be hard to trace it back to them.
In summary, I really don't think your iPhone got cloned. Is some creepy dude sorting through your email? Well, we all know the answer to that!

JayLenochiniMac · Oct 20, 2013

All you had to do is Settings > General > Reset > Erase All Content and Settings prior to taking it in.

abz1981 · Oct 20, 2013

dont store porn on your iphone

this way you wont be paranoid.

aristobrat · Oct 20, 2013

Kilamite said:
Yes, and I'm overreacting and being paranoid. It was just I thought about what all you could do if you have a backup of someone's iPhone - you'd have a key to their entire life unlocked. Emails, contacts, photos, messages all freely available to read.

Interesting.

People have been giving Apple their Mac admin passwords for years when they drop off their Macs for service.

With the exceptions of phone call logs and non-iMessage SMS, seems like there'd be a lot more personal data to snoop around with on a Mac than an iPhone?

Indecisi0n · Oct 20, 2013

He was just looking through your pictures.

cRuNcHiE · Oct 20, 2013

Whenever I've had an iPhone swapped ,the 'genius' always navigated my phone to the erase page and asked me to press the final confirm erase button before taking it away.

ct2k7 · Oct 20, 2013

Kilamite said:
Yeah most do that for me too. Just when they disappear with my card, it really does annoy me.

Yes, and I'm overreacting and being paranoid. It was just I thought about what all you could do if you have a backup of someone's iPhone - you'd have a key to their entire life unlocked. Emails, contacts, photos, messages all freely available to read.

Where do they do that in Edinburgh?

Search

Search

Cloning Someone's iPhone

kolax

macrumors G3

maflynn

macrumors Haswell

kolax

macrumors G3

Gav2k

macrumors G3

scaredpoet

macrumors 604

thelatinist

macrumors 603

kolax

macrumors G3

ct2k7

macrumors G3

scaredpoet

macrumors 604

kolax

macrumors G3

7thson

macrumors 65816

JayLenochiniMac

macrumors G5

abz1981

macrumors 65816

aristobrat

macrumors G5

Indecisi0n

macrumors regular

cRuNcHiE

macrumors 6502a

ct2k7

macrumors G3

Our Staff