@BusinessDaily

Apple undercuts popular tool for cracking iPhones

3 months ago, 14 June 07:30

By: Reuters

San Francisco

Apple Inc said on Wednesday it will change its iPhone settings to undercut the most popular means for law enforcement to break into the devices.

The privacy standard-bearer of the tech industry said it will change default settings in the iPhone operating system to cut off communication through the USB port when the phone has not been unlocked in the past hour.

That port is how machines made by forensic companies GrayShift, Cellebrite and others connect and get around the security provisions that limit how many password guesses can be made before the device freezes them out or erases data. Now they will be unable to run code on the devices after the hour is up.

These companies have marketed their machines to law enforcement in multiple countries this year, offering the machines themselves for thousands of dollars but also per-phone pricing as low as $50.

Protect customers

Apple representatives said the change in settings will protect customers in countries where law enforcement seizes and tries to crack phones with fewer legal restrictions than under US law.

They also noted that criminals, spies and unscrupulous people often use the same techniques.

Even some of the methods most prized by intelligence agencies have been leaked on the internet.

“We’re constantly strengthening the security protections in every Apple product to help customers defend against hackers, identity thieves and intrusions into their personal data,” Apple said in a prepared statement. “We have the greatest respect for law enforcement, and we don’t design our security improvements to frustrate their efforts to do their jobs.”

Apple began working on the USB issue before learning it was a favourite of law enforcement.

The setting switch had been documented in beta versions of iOS 11.4.1 and iOS12, and Apple told Reuters it will be made permanent in a forthcoming general release.

Apple said that after it learned of the techniques, it reviewed the iPhone operating system code and improved security. It decided to simply alter the setting, a cruder way of preventing most of the potential access by unfriendly parties.

With the changes, police or hackers will typically have an hour or less to get a phone to a cracking machine.

That could cut access by as much as 90 per cent, security researchers estimated.

This also could spur sales of cracking devices, as law enforcement looks to get more forensic machines closer to where seizures occur.

New ways

Undoubtedly, researchers and police vendors will find new ways to break into phones, and Apple will then look to patch those vulnerabilities.

The setting change could also draw criticism from U.S. law enforcement officials who have been engaged in an on-again, off-again campaign for legislation or other ways to force technology companies to maintain access to users’ communications.

Apple has been the most prominent opponent of those demands. In 2016, it went to court to fight an order that it break into an iPhone 5c used by a killer in San Bernardino.

Then-FBI Director James Comey told Congress that without compelling Apple to write new software to facilitate the digital break-in, there ...
Read More


Category: business opinion news corporate economy lifestyle markets

Suggested

1 hour ago
@BusinessDaily - By: Abiud Ochieng
Jirongo stays in cells on failure to raise bail

Former Lugari MP Cyrus Jirongo will remain in police custody until Thursday after he failed to raise Sh5 million cash bail to secure his freedom. ...

Category: business news economy opinion markets corporate
12 hours ago, 09:18
@TheEastAfrican - By: Daily Nation
Kenya to cut budget to $29 billion

Devolution, Treasury, ICT and Infrastructure ministries are among the biggest losers. ...

Category: topnews news business
7 hours ago, 14:20
@AfricaNews - By: Michael Ike Dibie
Libya sue JPMorgan over $6M bribe allegation | Africanews

Libyan Investment Authority (LIA) has sued JPMorgan Chase & Co. in London. ...

Category: africa africa_business business news topnews
10 hours ago, 11:09
@TheEastAfrican - By: Business Daily
Kenya loses out to Rwanda on conference hosting

Kenya hosted 17 global conferences last year compared to 21 held by Rwanda. ...

Category: business news
10 hours ago, 11:15
@BusinessDaily - By: The New York Time ...
For elderly women with breast cancer, surgery may not be the

Schonberg said that patients’ decisions — about screenings and treatments — have proved stubbornly resistant to change. ...

Category: business markets news corporate economy opinion
Now
@BusinessDaily - By: Brian Ocharo
Society wins reprieve in Sh285m loan suit

Development Bank of Kenya has been given seven days to file a written submission in a case in which it is seeking to recover more than Sh285 million from a co-operative society. ...

Category: business opinion news

@BusinessDaily

Apple undercuts popular tool for cracking iPhones

3 months ago, 14 June 07:30

By: Reuters

San Francisco

Apple Inc said on Wednesday it will change its iPhone settings to undercut the most popular means for law enforcement to break into the devices.

The privacy standard-bearer of the tech industry said it will change default settings in the iPhone operating system to cut off communication through the USB port when the phone has not been unlocked in the past hour.

That port is how machines made by forensic companies GrayShift, Cellebrite and others connect and get around the security provisions that limit how many password guesses can be made before the device freezes them out or erases data. Now they will be unable to run code on the devices after the hour is up.

These companies have marketed their machines to law enforcement in multiple countries this year, offering the machines themselves for thousands of dollars but also per-phone pricing as low as $50.

Protect customers

Apple representatives said the change in settings will protect customers in countries where law enforcement seizes and tries to crack phones with fewer legal restrictions than under US law.

They also noted that criminals, spies and unscrupulous people often use the same techniques.

Even some of the methods most prized by intelligence agencies have been leaked on the internet.

“We’re constantly strengthening the security protections in every Apple product to help customers defend against hackers, identity thieves and intrusions into their personal data,” Apple said in a prepared statement. “We have the greatest respect for law enforcement, and we don’t design our security improvements to frustrate their efforts to do their jobs.”

Apple began working on the USB issue before learning it was a favourite of law enforcement.

The setting switch had been documented in beta versions of iOS 11.4.1 and iOS12, and Apple told Reuters it will be made permanent in a forthcoming general release.

Apple said that after it learned of the techniques, it reviewed the iPhone operating system code and improved security. It decided to simply alter the setting, a cruder way of preventing most of the potential access by unfriendly parties.

With the changes, police or hackers will typically have an hour or less to get a phone to a cracking machine.

That could cut access by as much as 90 per cent, security researchers estimated.

This also could spur sales of cracking devices, as law enforcement looks to get more forensic machines closer to where seizures occur.

New ways

Undoubtedly, researchers and police vendors will find new ways to break into phones, and Apple will then look to patch those vulnerabilities.

The setting change could also draw criticism from U.S. law enforcement officials who have been engaged in an on-again, off-again campaign for legislation or other ways to force technology companies to maintain access to users’ communications.

Apple has been the most prominent opponent of those demands. In 2016, it went to court to fight an order that it break into an iPhone 5c used by a killer in San Bernardino.

Then-FBI Director James Comey told Congress that without compelling Apple to write new software to facilitate the digital break-in, there ...
Read More

Category: business opinion news corporate economy lifestyle markets

Suggested

1 hour ago
@BusinessDaily - By: Abiud Ochieng
Jirongo stays in cells on failure to raise bail

Former Lugari MP Cyrus Jirongo will remain in police custody until Thursday after he failed to raise Sh5 million cash bail to secure his freedom. ...

Category: business news economy opinion markets corporate
12 hours ago, 09:18
@TheEastAfrican - By: Daily Nation
Kenya to cut budget to $29 billion

Devolution, Treasury, ICT and Infrastructure ministries are among the biggest losers. ...

Category: topnews news business
7 hours ago, 14:20
@AfricaNews - By: Michael Ike Dibie
Libya sue JPMorgan over $6M bribe allegation | Africanews

Libyan Investment Authority (LIA) has sued JPMorgan Chase & Co. in London. ...

Category: africa africa_business business news topnews
10 hours ago, 11:09
@TheEastAfrican - By: Business Daily
Kenya loses out to Rwanda on conference hosting

Kenya hosted 17 global conferences last year compared to 21 held by Rwanda. ...

Category: business news
10 hours ago, 11:15
@BusinessDaily - By: The New York Time ...
For elderly women with breast cancer, surgery may not be the

Schonberg said that patients’ decisions — about screenings and treatments — have proved stubbornly resistant to change. ...

Category: business markets news corporate economy opinion
Now
@BusinessDaily - By: Brian Ocharo
Society wins reprieve in Sh285m loan suit

Development Bank of Kenya has been given seven days to file a written submission in a case in which it is seeking to recover more than Sh285 million from a co-operative society. ...

Category: business opinion news
Our App