Device squeaks through brute force PIN iPhone within 17 hours




Owners of iPhones running the risk of being cracked the four-digit PIN code of the device at the theft of their device. All this is fully automated with a device of less than 240 euros, shows a security to.

The claim is derived from the British security firm IT Governance. The so-called IP-Box would be the four-digit PIN from any iPhone to iOS 8.1 can crack within seventeen hours. MDSec, the company that a video of the brute force attack on his site posted , claims that the device is mainly used by iPhone repair shops. Basically there is a security in the operating system where after ten attempts, all data will be erased, but after each unsuccessful attempt to cut off the power before synchronization with the flash memory has been able to take place, this security system is effectively avoided. The entire process takes about 40 seconds per attempt.

The IP-Box unit operates MDSec probably through a vulnerability in iOS bug CVE-2014-4451 . This vulnerability has been fixed since iOS 8.1.1. The company is yet to come with test results or the vulnerability is actually resolved. For people who for whatever reason can not upgrade to the Tuesday unrolled 8.2 upgrade, the solution is to use a stronger password. This can be done by setting off at Access’ simple code. Then, a password can be entered to a hundred characters.


In: A Technology & Gadgets Asked By: [23633 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »