iPhone spyware lets police log suspects' passcodes when cracking doesn't work
https://www.nbcnews.com/tech/security/iphone-spyware-lets-cops-log-suspects-passcodes-when-cracking-doesn-n1209296
@voltronic Okay now that I've actually read the article I'm even *more* baffled on how this could be effective against a reasonably-secured OS. This isn't just pulling data off of a cache, but also requires actually installing software on the phone without user authentication. That shouldn't be possible, period.
@john_b @voltronic Oh this kind of thing works. It's an ancient technique. It's just another way of brute-forcing a password. But, it will fail if your device is properly secured with 2-factor authentication or other methods. Fortunately for cops, most people haven't a clue when it comes to security.
Hold up: first, an iPhone will go into infinite lockout after a sufficient number of failed passcode attempts.
Second, you simply cannot install software onto an iPhone that you can't unlock.
Tell me how this "works" in light of these facts, because I can't see it.
Do you actually have evidence of that happening, aside from anecdotes that basically emanate from Graykey?
Me, I don't think most cops have a clue when it comes to computer security.
The fact is that either GreyKey seems to be full of shit, or Apple is full of shit, and I saw plenty of permanently-disabled devices when I was repairing them.
@voltronic @sjvn @john_b
Well, if I just search for "sasquatch" or "adrenochrome vampires" or "antigravity", I can find "quite a few articles stating this is a thing".