back to article Hackers lay claim to exploit that defeats iPhone anti-theft tools

A pair of security researchers claim to have found a flaw which could allow an attacker to remove security measures on lost or stolen iPhones. Dutch researchers "AquaXetine" and "Merruktechnolog" were credited in a report from De Telegraaf as exploiting a "man in the middle" flaw that tricks a stolen iOS device into connecting …

COMMENTS

This topic is closed for new posts.
  1. MooJohn

    It's ok - nobody else will find out

    "Just because some hackers might have found a way around that element of the protection doesn’t mean that the vast majority of phone thieves would have a clue how to go about it..."

    Worst quote from a security professional ever. You know, because exploits stay secret forever!

    1. DropBear
      Thumb Down

      Re: It's ok - nobody else will find out

      "...doesn’t mean that the vast majority of phone thieves would have a clue..."

      Right - only every single one of those who would stay in 'business' after such anti-theft measures would become widely used. Oh, and mind you, it's quite alright if any number of thieves have no idea how to do this, their common fence 'knowing a guy' will suffice...

      1. Eddy Ito

        Re: It's ok - nobody else will find out

        'knowing a guy' will suffice

        And thus a whole new CaaS (cracking as a service) was born.

  2. Steven Roper

    It would appear

    that the best defence against phone thieves is to implement an actual, real self-destruct. You know, the kind made of C4 with ball-bearings and bits of broken glass and shit embedded in it.

    1. Michael Thibault
      Mushroom

      Re: It would appear

      @Steve Roper

      there's going to be a problem (at least in) securing the means to detonate it--which makes the cure at least as bad as the disease.

      1. Sureo

        Re: It would appear

        Actually that's easy .... have a secret password that you have to enter every 10 minutes, or kaboom!

    2. Anonymous Coward
      Coat

      Re: It would appear

      I'd love to see someone walk through an airport scanner with one of those !

    3. emmanuel goldstein

      Re: It would appear

      all you need is 15 grams of RDX

      https://en.m.wikipedia.org/wiki/Yahya_Ayyash

    4. Anonymous Coward
      Anonymous Coward

      Re: It would appear

      The problem there is innocent bystanders when it goes off. :(

    5. Bucky 2

      Re: It would appear

      LOVE it! But first, the phone should encourage you to assemble your IM team, and as usual, the Secretary will disavow any knowledge of you.

    6. Old Handle

      Re: It would appear

      No need for C4, just short the lithium battery.

  3. Anonymous Coward
    Anonymous Coward

    Kill switch = cheaper repairs

    work it out.

  4. Anonymous Coward
    Anonymous Coward

    Apple hasn't replied because there motto is

    See No Problem

    Hear No Problem

    Speak No Problem

  5. Andrew Jones 2

    So presumably the iPhone doesn't even bother to verify that the certificate for the Apple server it is talking to - is valid then?

This topic is closed for new posts.

Other stories you might like