So what black magic did the FBI use to get into that iPhone anyway?

There's a market for selling major, undisclosed exploits, y'know...
It was probably done using a backdoor, though.

>>56911157
They just hired some kid who knew how to clone the firmware from another phone

File: 1472330225355.png (236KB, 966x390px) Image search: [Google]

236KB, 966x390px

>>56911157
it was backdoored

>>56911370
literally this. They wouldn't officially disclose it to the public though.

You can literally find one skimming a few pages here: https://www.cvedetails.com/vulnerability-list/vendor_id-49/product_id-15556/Apple-Iphone-Os.html

>>56911157
>So what black magic did the FBI use to get into that iPhone anyway?
they cloned the storage chip.

that was possible because iPhone 5 didn't have secure enclave.

if you have 5s or above, that trick is now impossible.

>>56911426
see >>56911370 and >>56911412

>>56911433
you're a fucking idiot. the phone was locked. can't RCE it.

quit posting on topics you know nothing about, child.

>>56911445
How much is apple paying you?

You can LITERALLY FIND A BACKDOOR ON THE WEBSITE I MENTIONED.

Not sure why it's not on the news but it's there.

>>56911157
https://www.reddit.com/r/ReverseEngineering/comments/53ini5/hardware_hack_defeats_iphone_passcode_security/

File: tay tay cat.jpg (81KB, 684x688px) Image search: [Google]

81KB, 684x688px

>>56911462
>How much is apple paying you?
10 million dollaroos.

I work in security field, however. anyone with half a brain will figure out how they cracked it.

1) phone locks up after a certain number of wrong password entries
2) it will even delete all its memory if it was set to do that
3) so to avoid that, you clone the storage chip
4) then you try passwords on clones until you find the 4-digit combination that works

but in iphone 5s+, that's impossible because whole storage is encrypted with a key stored in the CPU.

>BACKDOOR
kek'd. thanks for a laugh.

why don't you then collect the $1.5 million bounty then, genius?

https://www.wired.com/2016/09/top-shelf-iphone-hack-now-goes-1-5-million/

>>56911445
>uses iToy instead of a real phone
>calling anyone else a child

>>56911499
also, forensics:
https://www.zdziarski.com/blog/?cat=11

File: kek.jpg (37KB, 539x357px) Image search: [Google]

37KB, 539x357px

>>56911514
I don;t but I bet you're a windows kiddy.

besides, it's irrelevant what I use. arguments stand on its own.

>>56911157
It was backdoored from the start, and they had access to it from the start, but part of the deal with Apple (the US's biggest company) was that the government would have to make a big stink out of "not being able to" get into it, to help promote reputation and drive sales.

>>56911510
Dam nigga, hope that pay is good. I'm looking at the vulnerability that's essentially a backdoor right now. It doesn't require you to clone the nand chip or any fancy shit, just a cable and a computer. It's sad really, people put so much trust in apple and they fuck them in the ass every time and they like it.

>>56911555
its funny because you probably actually believe that

>>56911555
This, all that BS was just a PR stunt. Backdoors on iOS have been around for eons and is why that chinese dude down the street is rolling deep in benjamins today by unlocking "encrypted" iPhones.

File: 1447197382938.jpg (232KB, 1500x1120px) Image search: [Google]

232KB, 1500x1120px

>>56911579
Thank you ipanjeet, 5 turds have been deposited into your mouth.

File: 1473624582253.jpg (6KB, 227x222px) Image search: [Google]

6KB, 227x222px

>>56911566
>Dam nigga, hope that pay is good. I'm looking at the vulnerability that's essentially a backdoor right now. It doesn't require you to clone the nand chip or any fancy shit, just a cable and a computer. It's sad really, people put so much trust in apple and they fuck them in the ass every time and they like it.
collect the $1.5 mil then. lots of people claim they have a backdoor or a crack but they rarely walk the talk.

>>56911593
>Backdoors on iOS have been around for eons and is why that chinese dude down the street is rolling deep in benjamins today by unlocking "encrypted" iPhones.
hahahahahaha... this is what mentally ill and tech illiterate actually believe.

nigga, go and steal that shit from a chink dont the street and sell it to one of the forensics companies for $500k.

File: Apple Iphone Os List of security vulnerabilities.png (1MB, 1350x3120px) Image search: [Google]

1MB, 1350x3120px

JESUS FUCKING CHRIST

>>56911637
those are remote and mostly affect webkit, safari and related programs/libs

File: 1469752587248.png (70KB, 397x461px) Image search: [Google]

70KB, 397x461px

>>56911579
>US government spends trillions of dollars to bail out major banks and auto manufacturers
>believing that same government wouldn't also do PR tricks (that cost $0) for a U.S. corporation even bigger than the bailed-out corporations

File: android.png (1MB, 1520x4134px) Image search: [Google]

1MB, 1520x4134px

>>56911637
that's nothign. look at this one.

what's worse, there's millions of devices that are unpatched against most of these vulns.

>>56911669
no, they spend trillions on banks they would have no issue spending a couple million to pay an israeli firm to do it for them

grow a brain

>>56911637
>people actually unironically trust this joke of an OS

>>56911665
>it's okay, at least they use lube

>>56911701
Android is a MUCH bigger joke.

and if you think it's a joke, go crack it and collect $1.5million.

>>56911701
>thread about govt owning an iphone
>talks about remote vulns
context, fag
also, you should know that these days any crash that resembles a vulnerability is taken as such, even when few people, if anyone, really check if those are exploitable

>>56911690
>israeli firm

straight from the horse's mouth lol

how many more signs do you need that this is a cover up? lmao

>>56911688
>>56911711
Total vulnerabilities discovered:
>Android: 553
>iOS: 975
hmmmm

Android is also open source and vulnerabilities like these are quickly patched and updates are sent through OTA updates.

You remember the date bug? That shit wasn't patched for months.

https://www.theguardian.com/technology/2016/feb/12/setting-the-date-to-1-january-1970-will-brick-your-iphone-ipad-or-ipod-touch

Anyway Android isn't perfect but it's miles better than iOS in terms of security, usability, and useful features.

Ayy ya'll niggas should reset your routers/phones and leave this thread. I got a bad feeling we're being watched and there might be a snitch in this thread.

Nobody here post what the backdoor in the vulnerability list is.

GeorgeJ.Tenet, Director of Central Intelligence (CIA), told Serbia's Counterintelligence Service (Kontraobavesajna Sluzba - KOS) about plateau d'Albion (Alps of Haute-Provence) frenchelon station : a sexually addicted to young soldiers sent C4I2 (OTAN Comand, Control, Communications, Computers, Inteligence & Interoperability)`s sensitive secured letters deciphered to Armed Islamic Group (GIA) !

Ask DoD-C3I (Command, Control, Communications, Intelligence)`s contact of Giat Industries greed & sadness & unhappiness Dpt via http://www.dtic.mil/ for Ref. SARA, Rapid Reaction, JSOFC3IP, Corporate Security, Electronic Surveillance.

Reconnaissance Office (NRO), told Serbia's Counterintelligence Service (Kontraobavesajna Sluzba - KOS) about Kourou (American continent) frenchelon station : a bad bad bad bad bad guy sent ISI (pakistan Inter-Service Intelligence)`s web based CGI proxys & Anonymizers logs to al-Qaida (Usama Bin Ladin) !

Ask 634th Military Intelligence`s contact of PricewaterhouseCoopers paramilitary forces Dpt via http://www.fsb.ru/ for Ref. USCOI, CID, BOP, FINCEN, FLETC, NIJ, ACC, AFSPC, BMDOSASSTIXS, NAVWAN, NRL, RL.

Dennis Richardson, Director-General of Security, Australian Security Intelligence Organization (ASIO), told Ukraine's Security Service (Sluzhba Bespeky Ukrayiny - SBU) about Mayotte (Indian Ocean) frenchelon station : a bad bad bad bad bad guy sent TsSR (NIS Tsienntral'naya Sloujba Razviedki)`s email addresses with logins & passwords to Basque Fatherland and Liberty (ETA) a.k.a. Euzkadi Ta Askatasuna !

Ask JMIC (Joint Military Intelligence College)`s contact of Verisign assassination Dpt via http://www.bundesnachrichtendienst.de/ for Ref. AADCCS, DABM, DAIRSDIA, DALATS, DALATS, DIFAX, PSM, SECMANs, tampering.

apple is collaborating with them, this resistance on their part is just theater to make us think that they aren't

File: bootrom.png (25KB, 800x600px) Image search: [Google]

25KB, 800x600px

>>56911157
Most likely NAND mirroring which has been proven to work. If you're asking me, I think they used a bootloader exploit. That would allow an attacker to easily flash a custom OS while bypassing signature checks. So here's how it works:

Red part
>ROM which is actually RO starts at the address of 0x0
>it copies itself over to DATA
>DATA is actually written to each time this happens
>DATA is writable from ROM, so fuck it, we can do it too
>DATA is sent to the load address (same address as the LLB further up the bootchain, but that's not important now)

Blue part
>after the load address is found, the DATA is copied there
>DATA is shifted to a specially allocated piece of memory
>the address in the memory to which DATA is shifted to is selected at random each time
>heap can be attacked but isn't really important here

Yellow part
>Main stack is used to start the SoC and AES module and then decrypt and load the LLB and get it started to kick off the iOS bootchain

Exploitation
>make USB fuzzer
>find a way to feed the main stack lots of bullshit
>crash it
>analyze crashes
>repeat crashes
>use crashes to your advantage to stop the indexes of the exception or main stacks (or both) from resetting
>write to vulnerable DATA (red) section
>congrats, you did it!

>>56911426
Secure Enclave is a part of Touch ID. No iOS devices are safe from NAND mirroring. The newer generations will just be more difficult to crack.


t. iToy enthusiast

It's a shame that there is too many people here with their own biases and agendas for people to actually find the truth by talking to them.

One thing that is interesting, Jobs didn't seem like the kind of guy to make big stink over things like LGBT politics or encryption under the law. Jobs seemed a little more subtle about things like this compared to Tim Cook. The whole drama between Apple and the FBI felt more like Tim Cook vs the FBI. Which is interesting because Tim Cook does seem to live a pretty private life, not really implying that Tim Cook has something bad he has to hide but it's kinda interesting how that turned out.

In addition, Apple loves to use the fact that they don't sell user data like Google does and a lot of their services are quite crippled compared to other companies (Siri being not as useful compared to competing Cortana due to not having a wealth of info, features like AirDrop being designed in a way that would reduce interception, etc). In light of these choices and actions, I can believe that on some level, Apple does care about the consumer's right to privacy.

Another interesting thing is how the FBI and other law enforcement have treated the iPhone and other Apple devices. When people claim that the iPhone is going to be popular with pedophiles, I have to ask what are they trying to do? Lure people away from iOS to something less secure? Or maybe honeypot people to use the iPhone? Really, neither of these make sense when you consider GSM networks and how the hardware is backdoored due to the nature of cellphones.

Point is, I think on some level, Apple clearly needed more PR, since iOS devices are slipping to Android and the Mac was never really popular but a lot of this seems to be actions of Tim Cook.

But to make this issue out of which mobile OS is more secure (not really due to hardware backdoors) and a dick measure contest over found exploits is pointless.

File: Screen-Shot-2016-03-29-at-11.41.13-AM.png (152KB, 1332x426px) Image search: [Google]

152KB, 1332x426px

https://www.zdziarski.com/blog/?p=6020

at least we know who did it

it's sad that groups like anonymous and lulzsec don't exist anymore. they fucked some security companies in the ass very hard

>>56911157
officially: they bought some software from an isreali security firm that does this kinda thing. The company already existed, but the software hadnt been developed for that specific model yet. how it works I dunno

but irl, the FBI had the password and then changed it. This was never about getting into this specific phone. I think it was about creating a precedent to force apple to unlock phones, considering the number of devices they want unlocked the only reason this one got as much publicity as it did is because publicity was the goal, it was a bid to sway public opinion.

>>56912109
but you are surrounded by anonymous right now

File: anon.png (79KB, 508x669px) Image search: [Google]

79KB, 508x669px

>>56912109 see >>56912225

>>56912225
>>56912255
sure, but these days, knowing what happened to them, no one will risk anything anymore... I suppose

>>56912109
i hope you realize that anonymous were a bunch of nu-males that were occasionally used as a fall guy. they were incompetent and useless unless all you hope to achieve is a bunch of overweight and underweight retards standing around in guy fawkes masks.

>>56912288
but they did something about what they thought could be helpful
meanwhile, you are here shitposting

>>56912307
what did they do? they haven't accomplished anything.

no one even gives a fuck about scientology anymore and that was by far their biggest thing.

>>56912336
this

>>56912336
>>56912351
the HBGary and rootkit.com hacks were awesome

File: 1444123368694.png (34KB, 264x360px) Image search: [Google]

34KB, 264x360px

>>56911535
MacOS Terminal?

>>56911157
It was an older iphone, they could've easily got into it but instead they pushed a narrative in the media that Apple had to backdoor their shit for national security just to see if they could make that a new policy. It was a game.

The new iphones with their 'Secure Enclave' shit are impossible to get into physically but as with everything else almost trivial to break in remotely and grab whatever you want through pushing a malware itunes update or other method.

>>56911786
>>56911711
Android is for sure a joke.

Daily reminder that until last year, to defeat Android full disc encryption on any device all you had to do was type garbage into the "enter password" input screen. It overflowed and just booted the phone without even needing the password.

They also had a major issue with webkit remote vulns so many times I can't remember, and the radio still has access to /sdcard and other user data storage areas unless you specifically tell it not to and build your own ROM with SEAndroid prohibiting any radio access to those mount points.

Also... Android is no longer "open source". You can't build your own AOSP rom anymore because Google no longer provides any binaries for the proprietary drivers, and no other handset mfg do anymore either. Android latest it's a pile of proprietary bins, and even if you rip them from the phone and try building your own rom it's a rabbit hole of debugging trying to get it to work on all but a select few handsets.

tl;dr it's a pile of shit, also Google is replacing Android completely with a proprietary version in 2017

File: image.webm (113KB, 1080x1445px) Image search: [Google]

113KB, 1080x1445px

>>56912730
>tl;dr it's a pile of shit, also Google is replacing Android completely with a proprietary version in 2017
Still light years ahead of iOS. Also google ain't replacing shit, Android is too popular to just abandon now (~90% smartphone OS marketshare). This is like saying Linux will replace Windows 7,10,XP and all the other variants.

This is coming from an ex-iPhone 6s user btw. Currently have an HTC 10 and don't plan on switching to iturds anytime soon.

Cut the dead guys finger off, warmed it up and used it to access the phone.

>>56913251
Literally what they should've done in the first place.

>>56912765
No, Android is not important. Literally all the features are in GAPPS, vanilla android without GAPPS has nothing but barebones functionality and hardly any modern apps work for it with access to GCM. This was done on purpose as Google has wanted to make a proprietary version for some time now to avoid even LGPL and due to complaints of people like Qualcomm who have also been pushing for a proprietary release free of L/GPL code http://www.theregister.co.uk/2016/06/08/google_is_taking_android_proprietary_heres_how/

>>56912765
As long as it looks like Android people won't give a fuck what OS is on their phones. People use Windows because switching to Linux requires effort. Phones are simple enough and all function the same from a user's perspective they won't care.

>>56911786

> Anyway Android isn't perfect but it's miles better than iOS in terms of security

fucking lol. With this level of fanboyism, i'm actually surprised you're not an Applefag.

File: stock-photo-dark-skinned-hacker-with-credit-card-and-flag-on-background-russia-298599743.jpg (33KB, 450x320px) Image search: [Google]

33KB, 450x320px

>>56911445
Butthurt apple fag
>pic related

>>56911566
Share the backdoor so I can collect the bounty

>>56911690
they spend trillions on banks because they can't just hire someone to unfuck it. I hope it's only minimum wage. Shit, I hope it's less.

>>56911711
does your logic also imply that we'd receive more than 1.5million for cracking the MUCH bigger joke, pajeet?

>>56911818
I was being spoofed a little bit earlier so I made sure to do nothing but spend time on facebook inspecting elements and removing them. I got the same notification three times for the same event after checking it and clearing it each time. Clear spoof.

Anyway, I wrote out that solution to cracking the iphone on here months ago. It's not like it's fancy when you have an unlimited budget. This is all just a cover up.