Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

iOS 7's 'Activation Lock' Delivers Cautious Optimism to Officials Concerned Over Mobile Device Thefts

I am glad we are holding Apple responsible and accountable for peoples' iPhones getting stolen or lost.

I demand that we hold all manufacturers of all products similarly responsible.

Police therefore should be 'concerned' that companies are not putting in failsafe features to prevent the theft of televisions, home phones, milk, tennis shoes, flashlights, bicycles, cars, hospital equipment, Italian prosciutto, etc.

Someone stole my shoes -- Nike should have put in anti theft chips and immobilized the shoes against the criminals' feet!
 
mdelvecchio said:
how would you know the answers to my security questions? or the key if using double authentication on iOS devices?

oops, you wouldnt. try again.
Click to expand...

i just tried it, to reset my password it sent a link to my email.. i entered new password, done. it never asked me for my security questions nor my birthdate.

the key here is having access to the persons email, if you do, all of the other security measures are bypassed. you're not trying to log in with a unknown device.. and if asked for the birthdate just open the persons facebook app.

----------
512ke said:
I am glad we are holding Apple responsible and accountable for peoples' iPhones getting stolen or lost.

I demand that we hold all manufacturers of all products similarly responsible.

Police therefore should be 'concerned' that companies are not putting in failsafe features to prevent the theft of televisions, home phones, milk, tennis shoes, flashlights, bicycles, cars, hospital equipment, Italian prosciutto, etc.

Someone stole my shoes -- Nike should have put in anti theft chips and immobilized the shoes against the criminals' feet!
Click to expand...

It's just common sense, more phones stolen = more cheap phones on craigslist = less people buying new phones. Also, would you rather live in a world where a stolen phone is worthless and so you don't ever have to worry about someone stealing your $700 computer from your hands that has your entire life on it?

I commend Apple for trying to tackle this problem, but they need to do more.. I've seen people beaten by gangs of 6 thugs for their iphones in the subway in broad daylight.
 
Last edited by a moderator:
needfx said:
great points altogether, but near zero thefts is the outlandish goal of attorney general NYC

"Schneiderman, along with San Francisco district attorney George Gascón, will question Apple, Google, Samsung and Microsoft officials in New York about why they have not yet developed technology that renders stolen mobile devices inoperable, eliminating the incentive for theft."
Click to expand...

Politician. They always talk about "zero tolerance" and other outlandish goals. On the other hand he's not willing to pay for a personal bodyguard to accompany every mobile device user, so I question his dedication.
 
doelcm82 said:
Walmart could have a security guard on every aisle, or assign one to every customer to follow them around the store.
Click to expand...
But the guards could still steal things, so you need guards guarding the guards and then guards guarding the guards that are guarding the guards.
 
Have you ever attempted to change your password??? You need the original password to change it to a new password

qwimjim said:
so i am missing nothing then.. to circumvent this theft protection all one has to do is change the victims apple id password before they have a chance to lock the device.

it takes about 30 seconds to change an apple id password..
Click to expand...
 
charlituna said:
Doesn't really matter since it would be blocked from reactivating the phone in iTunes. They have just wiped a brick
Click to expand...

You could still use the iPhone as a WiFi-less iPod touch once you get past the passcode. Don't know if it would sync with iTunes when the computer running iTunes is not connected to the internet.
 
Last edited:
etrinh said:
Have you ever attempted to change your password??? You need the original password to change it to a new password
Click to expand...

They are saying if you have access to the phone then you may have access to their email to reset their password. The solution to that is to lock the phone with a passcode lock and/or not have an account easily available that can reset the account password.
 
qwimjim said:
i just tried it, to reset my password it sent a link to my email.. i entered new password, done. it never asked me for my security questions nor my birthdate.

the key here is having access to the persons email, if you do, all of the other security measures are bypassed. you're not trying to log in with a unknown device
Click to expand...
So, the only solution is to not set-up the e-mail account that is set as the recovery for the AppleID (nor let Safari store the password if you were to access that account via Safari on the iPhone).

Or set a passlock.

I've seen people beaten by gangs of 6 thugs for their iphones in the subway in broad daylight.
Click to expand...
I doubt that you have seen people in bright daylight in the subway. :D
 
I would much rather have the option of turning the phone into a remote controlled grenade. That will be an even better deterrent.
 
etrinh said:
Have you ever attempted to change your password??? You need the original password to change it to a new password
Click to expand...

No you don't, click on 'forgot your password', it will send an email, click on link, enter new password. Done. Not sure why you people are arguing against reality

----------
manu chao said:
So, the only solution is to not set-up the e-mail account that is set as the recovery for the AppleID (nor let Safari store the password if you were to access that account via Safari on the iPhone).

Or set a passlock.


I doubt that you have seen people in bright daylight in the subway. :D
Click to expand...

Correct, but what percentage of people will use an email for resetting their apple I'd that they don't have in the mail app? 1%?

Of course people on this forum can set their phone up so it is basically bricked if stolen.. But the overwhelming percentage of users won't, theyre not that saavy.. and so it doesn't really matter... It's gotta work for everyone if its to be an effective deterrent..
 
ChrisA said:
It all depends on how Aple did this. if the 'chip" is the CPU then there are not a lot of spare A5 CPUs available except for broken phones. It is "way hard" to remove the CPU. It is not something you can do by hand easy. Even at the factory that can't install CPUs by hand. They use a robot and a reflow oven.

You can build a "write once" memory. The technology uses fuses. Basically after the data are written you use a high voltage to "blow" a fuse and disable the write circuit. Did Apple do this? We don't know.

But if the Serial number is burned into the CPU chip and put into "write once" memory then the system is fool proof.

Then if they did it this way the only reason to seal an iPhone would be the same as for sealing a car, for parts. People who repair phones would pay the thief for good un-scratched screens and cases and working home buttons and batteries. The market is small for that and the prices paid would be low.
Click to expand...

I hope that's what Apple did so people living in cities like New York have a little peace of mind when they take out their iPhones on the subway or street. A lot of people here seem oblivious to their environment, especially those who didn't grow up here. I read my neighborhood police blotter a few hours ago and I counted six iPhone related crimes out of a total of nine crimes from the past week. I hope this improves the situation when it becomes a hassle to collect on your "apple-picking". As for parts, I don't think it will be worth it. It's not lucrative like auto parts, not even close.

----------
manu chao said:
So, the only solution is to not set-up the e-mail account that is set as the recovery for the AppleID (nor let Safari store the password if you were to access that account via Safari on the iPhone).

Or set a passlock.


I doubt that you have seen people in bright daylight in the subway. :D
Click to expand...

It's possible, some subways are elevated, including stations.:rolleyes:
 
nStyle said:
DFU? Fail.
Click to expand...

when you do a DFU, you can restore but during activation process it detects the phone as part of "Find my iPhone" and makes you enter the iCloud username and password. Basically you're left with a paperweight...
 
tekboi said:
couldn't the thief just put the phone in DFU mode and restore it?
Click to expand...

iPhones activate with Apple after a DFU restore. If the iPhone is marked as belonging to someone, and the device has been wiped, it'll ask for the user/pass in order for Apple to activate it. Without Apple's activation, the phone acts as a paperweight.

There would be NO WAY to activate the phone yourself as Apple controls the keys. It's an encrypted handshake that Apple says "Yes, you can activate yourself" if it's not stolen, and a "No, you shall not activate" if it is.
 
WolfSnap said:
iPhones activate with Apple after a DFU restore. If the iPhone is marked as belonging to someone, and the device has been wiped, it'll ask for the user/pass in order for Apple to activate it. Without Apple's activation, the phone acts as a paperweight.

There would be NO WAY to activate the phone yourself as Apple controls the keys. It's an encrypted handshake that Apple says "Yes, you can activate yourself" if it's not stolen, and a "No, you shall not activate" if it is.
Click to expand...

I like the measures apple is taking in regards to security. :)

But I can't help but think that there is going to be a way to circumvent this almost immediately after iOS7 is released.
 
macs4nw said:
Every cell-enabled device, whether from APPLE, SAMSUNG or any other maker, has a unique IMEI number. If the will exists, and that is the big IF, there is no technological reason why this couldn't be made 100% foolproof.
Click to expand...

Every mobile phone has an IMEI, but AFAIK it always was possible to change it, I'm told.

----------
WolfSnap said:
iPhones activate with Apple after a DFU restore. If the iPhone is marked as belonging to someone, and the device has been wiped, it'll ask for the user/pass in order for Apple to activate it. Without Apple's activation, the phone acts as a paperweight.

There would be NO WAY to activate the phone yourself as Apple controls the keys. It's an encrypted handshake that Apple says "Yes, you can activate yourself" if it's not stolen, and a "No, you shall not activate" if it is.
Click to expand...

And what prevents the thief to change AppleID on the stolen iPhone to his own? List of steps:

1) Steal an iphone
2) Quickly change AppleID on the phone to your own
4) Reset the phone

Now the rightful owner has no control over the phone.
 
kot said:
And what prevents the thief to change AppleID on the stolen iPhone to his own? List of steps:

1) Steal an iphone
2) Quickly change AppleID on the phone to your own
4) Reset the phone

Now the rightful owner has no control over the phone.
Click to expand...
Passcode would prevent someone from using your phone -- and changing the AppleID.

But, I guess that if you're using the phone, and a thief grabs it while it's turned on, and they take the time to go to settings and do a erase all content and settings on it before it locks, and before you can turn on the lost mode on find my iphone, that you're screwed. Of course, most carriers (AT&T included) will now blacklist a stolen phone. Yeah, it can be used as an iPod, but, def. not a phone.
 
WolfSnap said:
Passcode would prevent someone from using your phone -- and changing the AppleID.

But, I guess that if you're using the phone, and a thief grabs it while it's turned on, and they take the time to go to settings and do a erase all content and settings on it before it locks, and before you can turn on the lost mode on find my iphone, that you're screwed. Of course, most carriers (AT&T included) will now blacklist a stolen phone. Yeah, it can be used as an iPod, but, def. not a phone.
Click to expand...

The only way to prevent it is to:

A. Have a passcode lock that cannot be easily guessed
B. Have your apple id recovery email not be an email that is set up on your iphone.

But if your phone is stolen while you're using it, which is already a very common way thieves are stealing iphones (snatch and run) then none of this matters and it becomes a race to see who can get online, you or the thief.
 
Only good if you use iCloud. But if you don't,, you'r in :)

People will find other ways round this.
 
Next they'll introduce a fingerprint sensor with the likelihood of thieves taking one of my fingers with them.
 
tekboi said:
I like the measures apple is taking in regards to security. :)

But I can't help but think that there is going to be a way to circumvent this almost immediately after iOS7 is released.
Click to expand...

And then Apple will hopefully plug the hole in iOS 7.01. And when that's circumvented, 7.02... Just like the jailbreak cat&mouse game. And considering how long it's taking these days for jailbreaks, there's a good chance that if you keep your phone up to date this feature will remain difficult to hack.
 
You are arguing that the thief has access to your email via the stolen phone. That I can agree with. But it's the users fault for not setting up a simple pass code lock. just my opinion. A device that has your whole life should be protected by a at least 4 clicks.

qwimjim said:
No you don't, click on 'forgot your password', it will send an email, click on link, enter new password. Done. Not sure why you people are arguing against reality

----------



Correct, but what percentage of people will use an email for resetting their apple I'd that they don't have in the mail app? 1%?

Of course people on this forum can set their phone up so it is basically bricked if stolen.. But the overwhelming percentage of users won't, theyre not that saavy.. and so it doesn't really matter... It's gotta work for everyone if its to be an effective deterrent..
Click to expand...
 
I'm optimistic about this. This is somewhere that Apple and MS may have a leg up on Android phones. They can require some sort of "phone home" after a full restore, and the phone's unique userID will be blacklisted if you tag it "stolen" with find my iPhone. I'm not sure Android phones require a call to the home base (would that be Google?).
Yeah people may be able to get around this somehow, but I think *most* of the petty thieves will know iPhones are worthless. Offhand today somebody could steal a AT&T/GSM iPhone, and just wipe it and pop in a sim card. They may not get full iPhone functionality, but they can have a phone that works in WiFi spots. You hear about phone thefts all the time on college campuses, and this may kick that.
Part of what makes me optimistic is my experience with car thefts. I had a few Jeeps back before the microchipped keys and every one of them had windows and steering columns busted from car thieves. These were not fancy high end cars, just the common Cherokees that were everywhere. Once I got a Cherokee, and later a Grand Cherokee with the chipped keys, I have not had a single case of somebody trying to steal my car. I live in the same neighborhood, I park in the same parts of town. I know there are thieves that can defeat that technology, but it's just not worth the trouble.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back