NYT reports San Bernardino iPhone hacked!
- The Times reported that iPhone has been hacked.
http://nyti.ms/1SrUyR2
What does that say about Apple's security?
Posted via CB10Last edited by Superfly_FR; 03-29-16 at 05:47 AM. Reason: "Tines" typo edited
03-28-16 05:33 PMLike 0 -
- The Tines reported that iPhone has been hacked.
http://nyti.ms/1SrUyR2
What does that say about Apple's security?
Posted via CB1003-28-16 05:43 PMLike 13 - Has something changed in the last couple of years, since the following CBC news story, or is there something I am not understanding?
"Peter Misek of the U.S.investment banking firm Jefferies says that despite reports alleging the NSA has been able to bypass the security measures intended to protect data on iPhones, BlackBerrys and Android devices, his company, based on conversations it has had with the NSA, is convinced that the security agency has not successfully cracked BlackBerry's custom cryptography.
We think it's NSA-proof, Misek told CBC's business program Lang & O'Leary Exchange. That security is so good, it takes four million years on brute compute force to hack it."
BB, Still the One03-28-16 05:54 PMLike 3 - Any one phone can be forensically hacked. This doesn't really say much about any secutiry. Even a blackberry could be broken into. The issue here was never whether 1 phone could be hacked, it was about the legal ramifications of the government forcing apple to put back-doors in their software.
Either Apple caved and tried to avoid a major public relations disaster or they're not as good as they claim to be.
Personally, I think Apple was involved.
Posted via CB1003-28-16 05:59 PMLike 0 - Has something changed in the last couple of years, since the following CBC news story, or is there something I am not understanding?
"Peter Misek of the U.S.investment banking firm Jefferies says that despite reports alleging the NSA has been able to bypass the security measures intended to protect data on iPhones, BlackBerrys and Android devices, his company, based on conversations it has had with the NSA, is convinced that the security agency has not successfully cracked BlackBerry's custom cryptography.
We think it's NSA-proof, Misek told CBC's business program Lang & O'Leary Exchange. That security is so good, it takes four million years on brute compute force to hack it."
BB, Still the One
Blackberry already has the position that they will comply with any court order to hack into a user's data, so maybe its a mute point.03-28-16 06:17 PMLike 0 - Government didn't break cryptography in this case either. The speculation was some sort of NAND mirroring which might work on older Iphones.TheScionicMan likes this.03-28-16 06:24 PMLike 1
- Interesting theory... I actually believe that could be the case. I mean, Apple protects their image while Big Brother protects the general belief that people's privacy rights are somehow still protected at all costs. Seems possible.03-28-16 06:36 PMLike 0
- Either way, it doesn't bode well for Apple.
It's one thing to portray the image that you will stand up to the government and then turn around and do a back room deal with them. It amounts to nothing more than a lie really where as other companies tell you upfront they will comply with warrants.
Or they were legitimately hacked and as far as I know BB10 hasn't been hacked.
Posted via CB1003-28-16 06:46 PMLike 0 - Well from what I understand Apple claimed they did not have the technology available to do what they were being asked to do. During this time a third party apparently did.
Either Apple caved and tried to avoid a major public relations disaster or they're not as good as they claim to be.
Personally, I think Apple was involved.
Posted via CB10
Let's keep in mind, Apple has never claimed the devices were absolutely secure, or that they couldn't be hacked. They simply claimed they had not created the tools that would do so, and preferred not to create those tools. Remember, this started when the government requested a court order in which it claimed that it had exhausted all other potential ways into the device, and needed Apple's help because there was no other option.TGR1 and Troy Tiscareno like this.03-28-16 06:48 PMLike 2 - Yes this is bad for Apple and great for Blackberry.
Anyone that thinks the FBI will get a hold of their phone... Is going to run out and buy a BlackBerry.03-28-16 06:50 PMLike 6 - What the gov't wanted was a way to defeat the portion of the OS which wipes all data after 10 missed passcode entries. Apple's claim was not that they couldn't do this; after all, if they couldn't do it, then it wouldn't matter what the court ordered, since Apple could just claim compliance wasn't possible. Instead, Apple explained they could do what the FBI wanted, which was to recode the OS in such a way to defeat the feature and install it on the subject phone, but that it would take some time to do. They also did nt wish to be compelled to do it, since the goal all along was to grease the path by which the gov't could force a manufacturer to help a criminal investigation by requiring that manufacturer to bring into devices on command.
Posted via CB1003-28-16 06:53 PMLike 0 -
- Which BlackBerry? The Priv running Android which need patches monthly or BlackBerry 10 the platform with no apps and BlackBerry no longer supports?03-28-16 07:03 PMLike 0
- Prem WatsAppCrackBerry Jester of JestersT0000 many zer0-day expl01ts in Apple software... =8-o
� There's a Crack in the Berry right now... �03-28-16 07:16 PMLike 0 - Prem WatsAppCrackBerry Jester of Jestershttps://community.spiceworks.com/top...t-pulls-ai-bot
Have a read here. This is good timing for the FBI. And those exploits are just run-of-the-mill regular occurrences that "just need to be patched"... ;-D
� There's a Crack in the Berry right now... �Superdupont 2_0 likes this.03-28-16 07:18 PMLike 1 - Prem WatsAppCrackBerry Jester of JestersIt was McAfee!!!!
;-pppp
� There's a Crack in the Berry right now... �smart548 likes this.03-28-16 07:19 PMLike 1 - According to BBC, it was Israeli firm Cellebrite.
http://www.cellebrite.com/Pages/ios-...om-ios-devices
http://www.bbc.com/news/world-us-canada-3591419503-28-16 07:25 PMLike 0 - Has something changed in the last couple of years, since the following CBC news story, or is there something I am not understanding?
"Peter Misek of the U.S.investment banking firm Jefferies says that despite reports alleging the NSA has been able to bypass the security measures intended to protect data on iPhones, BlackBerrys and Android devices, his company, based on conversations it has had with the NSA, is convinced that the security agency has not successfully cracked BlackBerry's custom cryptography.
We think it's NSA-proof, Misek told CBC's business program Lang & O'Leary Exchange. That security is so good, it takes four million years on brute compute force to hack it."
BB, Still the One
But even if we put those considerations aside, it is highly unlikely that the FBI has cracked the cryptography on the iPhone - it's much the same crypto that most of the industry uses, BlackBerry included, which is generally considered bulletproof.
The consensus among digital forensics folks is that we are most likely looking at a NAND mirroring technique here - basically, copying all of the phone's data off the device, then pasting it back onto the phone after they've used up all 10 password attempts to reset the password attempt counter. Much the same attack is almost certainly feasible on a BlackBerry, or any other phone on the market - to the best of my knowledge, no one currently stores the password attempt counter outside the NAND, because this is hardly a trivial attack. This is very much the kind of thing only a determined and well-funded adversary would try to pull.
Newer iPhones could theoretically solve this by storing the password attempt counter on the Secure Element, but I don't believe Apple currently does that - could be wrong though, I'll have to check Apple's security guide later.
EDIT: I should add, since it's been mentioned a couple times, that it could also be a software exploit - especially given the FBI's rush to classify the hack so shortly after it was proposed to them. This option is considered a little less likely in the forensics circles I follow, but it's not something to rule out. However, it's still not likely to have anything to do with the inherent strength of the encryption - it would most likely be a way to get around the passcode attempt limit. A jailbroken device can get around the passcode attempt limit, for instance, by overwriting the password attempt counter in the file system.Last edited by LazyEvul; 03-28-16 at 11:05 PM.
03-28-16 07:28 PMLike 3 - Dang, you guys--couldn't you have hurried it up? Even I was getting tired of all the grandstanding; I was running out of things to say! -A relieved Tim Cook, upon hearing this news.Dunt Dunt Dunt likes this.03-28-16 07:30 PMLike 1
- Question is do you believe that it has been hacked as reported, if Apple had a hand in it as some have suggested or was it a 3rd party who cracked it. My believe is with enough time & patience any programme PC or cell phone can be hacked. Great conversation topic with lots of speculation, no doubt a Hollywood script is being written as we speak about this very subject.
Posted via CB1003-28-16 07:31 PMLike 0 - I think if I was an iPhone user concerned with the security of my device I would rather that it was Apple that breached the security as opposed to a third party.
Posted via CB1003-28-16 07:39 PMLike 0
- Forum
- Popular at CrackBerry
- General BlackBerry News, Discussion & Rumors
NYT reports San Bernardino iPhone hacked!
Similar Threads
-
Earnings report prediction
By laid-back in forum BBRYReplies: 9Last Post: 04-01-16, 03:29 AM -
How Far Am I golf rangefinder for Blackberry. Has the same app been developed for iPhone?
By CrackBerry Question in forum Ask a QuestionReplies: 0Last Post: 03-28-16, 02:10 PM
LINK TO POST COPIED TO CLIPBOARD