YouTuber "EverythingApplePro" recently purchased a small $500 device that brute force hack and bypass the iPhone 7 or 7 Plus lock screen passcode of up to three handsets at a time. EverythingApplePro has demonstrated the process in a video. In addition, it is said that the exploit does not work on older devices such as iPhone 6 or iPhone SE. However, this vulnerability is only work for iOS 10.3.3 or the latest iOS 11 beta.

The gadget is sandwiched between two panes of glass, and features three full-size USB ports to attempt to crack three iPhone 7 units at a time. It also has a micro USB port and even an Apple Lightning port that can be used to power the device, it even includes an array of light sensors that ensure the iPhone display stays turned on while the hack is in progress.


The hack involves updating iPhone 7 using a third-party update tool to downgrade iOS system. For the hack to work the update has to go through a third-party app and not iTunes. So you can be updating from iOS 10.0.1 to iOS 10.3.3 or downgrading iOS 11 beta to iOS 10.3.3 for this to work. Once the operating system has been installed, iPhone asks user to enter passcode before it will start data recovery. The loophole is that at this particular passcode screen iOS does not limit number of passcode attempts as it normally does on the lockscreen.

The exploit allows the brute force gadget to perform unlimited attempts of entering all possible passcode combinataions before figuring out the right one. Sometime the devices may even take few days to get the passcode. But given Apple's focus on security for its devices, it's likely that this exploit will be patched relatively soon. if not get patched soon, the exploit is unlikely to ever affect the vast majority of iPhone users., because the hardware must be in hand for the hack to work, it's limited to the iPhone 7 and iPhone 7 Plus and it's pricey!

​Via appleinsider and iOSHacker


Post a Comment

Powered by Blogger.