this post was submitted on 09 Nov 2024

995 points (100.0% liked)

Technology

71843 readers

5066 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related news or articles.
Be excellent to each other!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
Check for duplicates before posting, duplicates may be removed
Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago

MODERATORS

[email protected]

995

Apple Quietly Introduced iPhone Reboot Code Which is Locking Out Cops (www.404media.co)

submitted 7 months ago by [email protected] to c/[email protected]

242 comments fedilink hide all child comments

Apple quietly introduced code into iOS 18.1 which reboots the device if it has not been unlocked for a period of time, reverting it to a state which improves the security of iPhones overall and is making it harder for police to break into the devices, according to multiple iPhone security experts.

On Thursday, 404 Media reported that law enforcement officials were freaking out that iPhones which had been stored for examination were mysteriously rebooting themselves. At the time the cause was unclear, with the officials only able to speculate why they were being locked out of the devices. Now a day later, the potential reason why is coming into view.

“Apple indeed added a feature called ‘inactivity reboot’ in iOS 18.1.,” Dr.-Ing. Jiska Classen, a research group leader at the Hasso Plattner Institute, tweeted after 404 Media published on Thursday along with screenshots that they presented as the relevant pieces of code.

top 50 comments

sorted by: hot top controversial new old

[–] [email protected] 317 points 7 months ago (23 children)

Law enforcement shouldn't be able to get into someone's mobile phone without a warrant anyway. All this change does is frustrate attempts by police to evade going through the proper legal procedures and abridging the rights of the accused.

[–] [email protected] 124 points 7 months ago

Yep! The police, being fascists, HATE this.

[–] [email protected] 45 points 7 months ago* (last edited 7 months ago) (11 children)

well it's kind of a selling point. I'm just too used to using android, though.

Edit - there's something for that too, cool!

[–] [email protected] 50 points 7 months ago (2 children)

You can enable lockdown mode. It forces the next unlock to ignore biometrics and require a pin, which police cannot force you to divulge without a warrant. Once enabled, you get a "lockdown mode" option in the menu when you hold down your power button.

[–] [email protected] 21 points 7 months ago (6 children)

If you haven't done this and need the same ability IMMEDIATELY: reboot, or just shut down

Every first boot requires pin same as lockdown

Also: set a nonstandard finger in a weird way as your finger unlock if you wanna use that, then theyre likely to fail to get that to work should you not manage to lock it down beforehand

Finally: there are apps that let you use alternate codes/finger unlocks to wipe/encrypt/reboot the device instead, allowing you to pretend to cooperate with the cops up until they realize they got played

load more comments (6 replies)

load more comments (1 replies)

[–] [email protected] 16 points 7 months ago (3 children)

You can use GrapheneOS, a security-focused version of Android which includes auto-reboot, timers that automatically turn off Wi-Fi and Bluetooth after you don't use them for a certain period of time, a duress PIN/Password that wipes all the data from your device after it's entered, as well as many other incredibly useful features.

It's fully hardened from the ground up, including the Linux kernel, C library, memory allocator, SELinux policies, default firewall rules, and other vital system components.

load more comments (3 replies)

load more comments (9 replies)

load more comments (21 replies)

[–] [email protected] 249 points 7 months ago

IT support everywhere sigh in satisfaction

[–] [email protected] 114 points 7 months ago (10 children)

GrapheneOS been had this feature, don't let apple tell you they invented it.

[–] [email protected] 75 points 7 months ago (1 children)

Great software features should be available to all hardware, regardless of OS.

[–] [email protected] 51 points 7 months ago (3 children)

For sure I'm just joking about apple's habit of taking a feature that has been around for YEARS and claiming they "innovated" it, usually after they strip it down a little no less (like in this case where it appears to be a setting users can't access, but Graphene lets you turn it on/off or adjust the time between lock and reset.)

load more comments (3 replies)

[–] [email protected] 28 points 7 months ago

IMHO, the novelty of the feature isn't what makes this headline worthy. This is noteworthy because of the scale. iOS is over a quarter of phones on earth, and in English speaking countries and Japan, you're looking at numbers that are often over 50%.

This will impact a LOT more investigations than Graphene, and I imagine Apple will be back in court fighting cops who want to remove privacy and security features. Hopefully this stuff stands up to the autocrats coming into power in the states.

load more comments (8 replies)

[–] [email protected] 95 points 7 months ago (2 children)

There is no shortage of reasons to dislike Apple. This isn’t one of them.

[–] [email protected] 26 points 7 months ago (8 children)

There is a scene in Mr Robot where Darlene is able to do a full wipe on her phone without even looking at the screen.

I wish I was that good.

I want a way that I can trigger this from the main lock screen without unlocking the phone.

Like a specific pin you have to enter twice to trigger the full wipe.

[–] [email protected] 34 points 7 months ago (2 children)

GrapheneOS has this. I believe it's called a Duress PIN.

load more comments (2 replies)

load more comments (7 replies)

[–] [email protected] 15 points 7 months ago* (last edited 7 months ago) (9 children)

I feel that a lot of the hate for Apple is not fully warranted. Contrary to Google or Facebook, their business model is not built on collecting your personal data. They are extremely overpriced, but deliver good quality - I am using my first iPhone for more than 4 years now, I never had and Android last nearly that long.

load more comments (9 replies)

[–] [email protected] 75 points 7 months ago (9 children)

As a member of the intelligence community, I can almost guarantee that this is directed at the increased use of Cellebrite UFED hardware, specifically putting the device back into BFU mode, which removes cryptography-related memory allocations. This is also why you're asked for your password instead of face or fingerprint upon reboot.

[–] [email protected] 27 points 7 months ago (7 children)

I don’t know how Cellebrite is a legally operating company. Their entire business model is a violation of the computer fraud and abuse act.

[–] [email protected] 33 points 7 months ago

No that’s only for when poor people do it

load more comments (6 replies)

[–] [email protected] 17 points 7 months ago

Which is great, because you can't warrant a password.

[–] [email protected] 15 points 7 months ago

I am also an intelligent individual in a community! High five

load more comments (6 replies)

[–] [email protected] 56 points 7 months ago (4 children)

The way this article is framed sounds like bullshit to me. 18.1 was released less than 2 weeks ago. Any phone running this version of iOS would have had to already been in custody and somehow upgraded to this version, or otherwise brought into custody very recently—too recently for this to have already posed such a problem that law enforcement is “freaking out” and reporting it to the media.

[–] [email protected] 25 points 7 months ago (3 children)

Don't they auto update the OS when connected to a charger? But even then, that would have triggered a reboot already.

load more comments (3 replies)

[–] [email protected] 44 points 7 months ago

Thank you Apple, right side of history here, fuck fascist pigs

[–] [email protected] 41 points 7 months ago (7 children)

Wouldn't that disrupt the usage of a phone as a server?

[–] [email protected] 132 points 7 months ago (10 children)

[–] [email protected] 22 points 7 months ago

oh fuck I can't stop laughing

load more comments (9 replies)

[–] [email protected] 45 points 7 months ago

That's it!! Now I will NEVER use an iPhone as a server. 😋

load more comments (5 replies)

[–] [email protected] 36 points 7 months ago (1 children)

Meanwhile security-oriented Android forks: "You didn't do that?"

[–] [email protected] 24 points 7 months ago* (last edited 7 months ago) (11 children)

Actually, Graphene and Calyx have this feature. I believe graphene may have it on by default at 18 hours, but I do not know about Calyx.

load more comments (11 replies)

[–] [email protected] 36 points 7 months ago

On one hand, Fuck Da Police

On the other hand, Fuck Apple

[–] [email protected] 24 points 7 months ago (5 children)

I think this used to be possible with tasker, ironically though probably not anymore before of all Google's restrictions on Android. (maybe if you have root)

load more comments (5 replies)

[–] [email protected] 15 points 7 months ago (4 children)

Amazing how a Foss project led the way on this...

Best marketing ever... Suck on that Tim Apple 🤡

[–] [email protected] 16 points 7 months ago (8 children)

who cares who invented it first? this is benefiting everyone? this isn’t some console wars bullshit, this is a great feature. if apple gets good press from it, i don’t care.

load more comments (8 replies)

load more comments (3 replies)

load more comments