{"id":13679,"date":"2018-10-25T14:30:02","date_gmt":"2018-10-25T22:30:02","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2018\/10\/25\/news-7446\/"},"modified":"2018-10-25T14:30:02","modified_gmt":"2018-10-25T22:30:02","slug":"news-7446","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2018\/10\/25\/news-7446\/","title":{"rendered":"Apple appears to have blocked GrayKey iPhone hacking tool"},"content":{"rendered":"

<\/p>\n

Credit to Author: Lucas Mearian| Date: Thu, 25 Oct 2018 14:09:00 -0700<\/strong><\/p>\n

Apple has apparently been able to permanently block de-encryption technology from a mysterious Atlanta-based company whose blackbox device was embraced by government agencies to bypass iPhone passcodes.<\/p>\n

Atlanta-based Grayshift\u00a0is one of two companies that claimed it could thwart Apple iPhone passcode security through brute-force attacks.<\/p>\n

The blackbox technology purportedly worked, as Grayshift\u2019s technology was snapped up by regional law enforcement and won contracts with Immigration and Customs Enforcement (ICE) and the U.S. Secret Service.<\/p>\n

Another vendor, Israel-based Cellebrite, also discovered a way to unlock encrypted iPhones running iOS 11 and marketed its product to law enforcement and private forensics firms around the world. According to\u00a0a police warrant obtained by\u00a0Forbes,<\/em><\/a>\u00a0the U.S. Department of Homeland Security tested the technology.<\/p>\n

Multiple sources familiar with the GrayKey have told Forbes<\/em><\/a> that the device can no longer break the passcodes of any iPhone running iOS 12 or above.\u00a0<\/p>\n

iOS 12 was released by Apple last month.<\/p>\n

\u00a0The use of Grayshift’s de-encrypting device \u2013 a 4-in. x 4-in. box with two iPhone-compatible Lightning cables \u2013 was first discovered by Motherboard<\/em>; it reviewed police department public records and emails obtained from federal agencies that revealed purchases of the device. The GrayKey box could apparently\u00a0unlock an iPhone in about two hours if the owner used a four-digit passcode and three days or longer if a six-digit passcode was used.<\/p>\n

Grayshift competitor Cellebrite also sold its Universal Forensic Extraction Device (UFED) to law enforcement agencies, including a $558,000 contract signed with ICE in August, according to a Freedom of Information Act request<\/a> filed by the Electronic Privacy Information Center (EPIC).<\/p>\n

\u00a0A request for comment today from Apple was not immediately returned.<\/p>\n

The UFED Cloud Analyzer tool can unlock, decrypt, and extract phone data, including \u201creal-time mobile data \u2026 call logs, contacts, calendar, SMS, MMS, media files, apps data, chats, passwords,\u201d according to the FOIA request.<\/p>\n

The technology can also extract private information without a passcode from private cloud-based accounts, such as those used by Facebook, Gmail, iCloud, Dropbox, and WhatsApp.<\/p>\n

In February,\u00a0reports surfaced<\/a> that Cellebrite had discovered a way to unlock encrypted iPhones running iOS 11 and was marketing the product to law enforcement and private forensics firms around the world. According to\u00a0a police warrant obtained by\u00a0Forbes,<\/em><\/a>\u00a0the U.S. Department of Homeland Security had been testing the technology. It was not immediately clear if the iOS 12 changes affect the Cellebrite technology.<\/p>\n

Earlier this year,\u00a0Grayshift<\/a>\u00a0emerged as a different company that had\u00a0developed an inexpensive black box that could unlock any iPhone<\/a>; Motherboard reported<\/a>\u00a0that local and regional U.S. police departments and the federal government had been purchasing the technology.<\/p>\n

Grayshift reportedly hired a former Apple security engineer.<\/p>\n

Nate Cardozo, a senior staff attorney with the\u00a0Electronic Frontier Foundation<\/a>\u00a0(EFF), a non-profit digital rights group, said earlier this year he believed the reports that the iPhone’s encryption had been cracked. Otherwise, law enforcement agencies wouldn’t be purchasing the hacking technology.<\/p>\n

“The FBI huffed and puffed and said couldn’t get into the iPhone, and then we found out that’s not true…the literal night before the court hearing [to decide the case],” Cardozo said.<\/p>\n

He was referring to the investigation of\u00a0San Bernardino gunman Syed Rizwan Farook.\u00a0 The FBI initially maintained it\u00a0was unable to crack<\/a>\u00a0the passcode on an iPhone used by Farook.<\/p>\n

The Justice Department\u00a0petitioned the courts<\/a>\u00a0to force Apple to comply with an order to unlock the device; a judge granted the request, but delayed making a final decision until hearing arguments from both sides. The evening before a court hearing to decide the matter, the agency announced it had gotten help from an outside group.<\/p>\n

The FBI’s attempts to get Apple to help with unencrypting the iPhone were rebuffed. Apple maintained that\u00a0to break into one iPhone<\/a>\u00a0would weaken security for all others.<\/p>\n

The news that two iPhone unencrypting methods were widely available to government agencies did not surprise analysts, who said it was inevitable.<\/p>\n

“There is no such thing as unbreakable encryption,” said Jack Gold, principal analyst with\u00a0J. Gold Associates<\/a>. “The idea is to make it as hard as possible by adding layers of encryption or long keys to encode, decode. But a determined decoder can crack it, given enough tools and enough time.”<\/p>\n

The GrayKey box retails for $15,000. That model is geofenced to a specific location, requiring an internet connection that enables up to 300 unlocks. There is also a $30,000 GrayKey model that can be used independent of internet connectivity and offers an unlimited number of device unlocks, according to\u00a0Motherboard<\/em>.<\/p>\n

Conversely, Cellebrite charges $5,000 to unlock a single iPhone, according to\u00a0Malwarebytes<\/a>.<\/p>\n

EFF’s Cardozo said consumers shouldn’t be overly concerned about iPhone-cracking technology because law enforcement agencies must still obtain a court-issued warrant to unlock a device.<\/p>\n

But those concerned about privacy rights should realize that once cracking technology becomes available, it’s reasonable to believe law enforcement agencies won’t be the only ones to gain access to it.<\/p>\n

\u201cIf you believe the only people with access to GrayKey or Cellebrite are the cops, I’ve got a bridge to sell you,” Cardozo said.\u00a0<\/p>\n

Apple took its own steps to further limit unauthorized access to locked iOS devices.\u00a0In its\u00a0beta release of iOS 11.3<\/a>, Apple introduced a feature known as USB Restricted Mode.<\/p>\n

Security software vendor\u00a0Elcomsoft first discovered the new feature<\/a>, which was buried deep within the beta release documentation. The feature was apparently cut from iOS 11.3 before it was released publicly.<\/p>\n

The documentation described the new feature as a way “to improve security.”<\/p>\n

“For a locked iOS device to communicate with USB accessories you must connect an accessory via Lightning connector to the device while unlocked \u2014 or enter your device passcode while connected \u2014 at least once a week.”<\/p>\n

If an iOS device is not unlocked after seven days, an iPhone’s or iPad’s Lightning port turns into nothing more than a charging port, locking out any data connection at the USB-interface level, according to Elcomsoft’s description.<\/p>\n

“Its effect on passcode unlocking techniques developed by Cellebrite and Grayshift is yet to be seen,” Elcomsoft explained in its blog post.<\/p>\n

Just this week, Apple CEO Tim Cook reiterated the company’s efforts to protect user privacy<\/a> at\u00a0a conference of European privacy commissioners in Brussels.<\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

Credit to Author: Lucas Mearian| Date: Thu, 25 Oct 2018 14:09:00 -0700<\/strong><\/p>\n

\n
\n

Apple has apparently been able to permanently block de-encryption technology from a mysterious Atlanta-based company whose blackbox device was embraced by government agencies to bypass iPhone passcodes.<\/p>\n

Atlanta-based Grayshift\u00a0is one of two companies that claimed it could thwart Apple iPhone passcode security through brute-force attacks.<\/p>\n

The blackbox technology purportedly worked, as Grayshift\u2019s technology was snapped up by regional law enforcement and won contracts with Immigration and Customs Enforcement (ICE) and the U.S. Secret Service.<\/p>\n

Another vendor, Israel-based Cellebrite, also discovered a way to unlock encrypted iPhones running iOS 11 and marketed its product to law enforcement and private forensics firms around the world. According to\u00a0a police warrant obtained by\u00a0Forbes,<\/em><\/a>\u00a0the U.S. Department of Homeland Security tested the technology.<\/p>\n

To read this article in full, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[2211,11070,10480,10554,714],"class_list":["post-13679","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-apple","tag-emerging-technology","tag-ios","tag-mobile","tag-security"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13679","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=13679"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/13679\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=13679"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=13679"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=13679"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}