Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
FBI Used Security Flaw Found by 'Professional Hackers' to Crack San Bernardino Shooter's iPhone
- Thread starter MacRumors
- Start date
- Sort by reaction score
Or, more likely the CIA or NSA.
[doublepost=1460552044][/doublepost]
Exactly. If you have a four digit passcode, you haven't secured your phone.
I know it's GOP's dream, heck, Fox News talks about this everyday; but while using a personal server is frowned upon, it's not illegal.
I wish the GOP focused their energy on nominating a proper candidate rather than go after her emails and telling FBI what they should and shouldn't do
There never has been a 100% secure device out there. There have always been multiple ways to hack the iPhone.
Well, in all fairness, the transfer of classified information and subsequent dissemination of said information is illegal - in fact a felony. Frankly it doesn't take a rocket scientist to figure out that, as Secretary of State you 1) receive and send highly classified information on occasion and 2) a personal email server sitting in your closet likely isn't as secure as systems that are designed for handling this kind of information. She knew what she was doing was a problem - she just didn't care. I suspect that the focus of the FBI investigation isn't so much about the server itself as it is about how highly classified information ended up on the server. Someone that emails it to her is one thing, but a lot of the classified information is restricted to systems that don't go through regular Internet channels and standard email protocols. These highly classified documents have dedicated terminals and supporting systems. I believe the FBI's concern is how information that should be restricted to those systems ended up on her server. Hence their discussions with her private IT guy (that also worked for the State Department) that set up her server and supported her regular IT needs.
[doublepost=1460553109][/doublepost]
If you have a four digit passcode, you're not too concerned about security (or just really ignorant).
It must be getting more difficult. I don't follow jailbreaking sites, but from what I read last it is taking longer to get a stable ios 9.2.1 jb.
Not saying it isn't possible. If it was devised by humans it can be done by humans.
Plus, I bet that as Apple learns about the jb methods they'll address it asap.
Interesting race, jb community actually helping Apple.
How about this: The FBI lied about ever getting into the iphone and only claimed they could because they needed an excuse to stop all the public hate against them. Their plan to use public scare tactics to gain support for a massive back door backfired and they needed an out. It certainly wouldn't be the first time a gov agency lied to save face.
I don't know about that. This gives everyone with a pre-5S an incentive to upgrade to a newer iPhone which the FBI confirms cannot be hacked by them. Is that bad for Apple?
Which is why security updates. It's not rocket science. Close, though.
You might like to compare, say, overall Android security in the field with iOS in the field. Nobody's perfect, but some are more imperfect than others.
[doublepost=1460560515][/doublepost]
In theory, you're right. In practice, not so much. Security only needs to be good enough to make cracking it impractical, or at the very worst, not worth the considerable effort to break it. With encryption, we've been there for quite a bit.
There's a reason so much effort is made by would-be criminals to do social engineering attacks versus directly attacking encryption and other device-level security.
[doublepost=1460561170][/doublepost]
It certainly is if you're passing on classified information through the emails on it. Which has already been shown to have happened.
I know, but if I said Roland from Prisonbreak people would be like "what?"
Dang that show was unreal.
Would it be possible for Apple to take this company to court now to force them to disclose that vulnerability?
Apple doesn't want jailbreaking to happen, since it disrupts their perfect vision of total control.
As for the FBI, Apple isn't against helping them when it doesn't compromise things like basic fundamentals of encryption.
What? Finding a way to break into the terrorist phone themselves or after asking Apple to help them but decided not to because the FBI asked a special hack for them to have access to everyone's iPhone?
Either FBI finds a way to get access to the phone themselves or ask the creator of the cell phone, they were nice enough to ask before finding some hacker to find a way around the encryption or glitch. And funny part is Apple asking what the glitch was from the FBI Tim Cook must be crazier than Steve Jobs to think after handing over whatever the FBI needed to only reject their request but now they are asking something from the FBI? Yeah right the street goes 2 ways and shame on Apple also for having another glitch.
Since Apple does not intend to sue, I believe Apple intends to just make the phones more secure with upcoming updates and continue on the path of birding the government for its anti-public privacy stands. Everybody wins. You find a flaw, the phone is yours to see. Next iOS, we kill that flaw. Find another one now. Repeat cycle. 
why do so many people mention tim cook in their post?, do they believe he actually reads this forum?
I don't suppose we'll ever know if there was anything on the phone besides their Vons grocery store shopping list.
Exactly. They didn't get anything from the phone. There was never anything on the phone. They got any info they needed from their personal phones. This was a work phone with nothing on it. They simply didn't want the Court to rule against their demand to gut encryption.
I thought the shooter's personal phones were smashed anyway? Probably got info from the phone company...
Meh. Own a device with the Secure Enclave. Use a 10 Digit Alphanumeric Code. Sleep easy knowing the FBI is unable.
This cracking of a 4 Digit Numeric Code by some "Grey Hat" ass for money is like taking off the Training Wheels. If anything it demonstrates how Deeply Inept the FBI is. Time for Loretta Lynch to resign.
This cracking of a 4 Digit Numeric Code by some "Grey Hat" ass for money is like taking off the Training Wheels. If anything it demonstrates how Deeply Inept the FBI is. Time for Loretta Lynch to resign.
You're right! The FBI claimed the phone had a virus that might devastate all of human civilization.
Wait... by hacking into it, haven't they opened the door for that monstrous thing to escape and destroy everything we know and love?!
OMG! The FBI is working with the terrorists! Everybody run!!!
So all phone pre 2013 are vulnerable if you used a four number passcode. Seems pretty bloody secure to me especially if you used an actual alpha numeric passcode of 8 characters or more, you'll be trying combinations for a very long time before you can get in. This method sounds like a pretty normal hack nowhere near as big an issue as jailbreak hacks.
FBI will still want one on their next iPhone case when the time comes this fight will come around again.
FBI will still want one on their next iPhone case when the time comes this fight will come around again.