Apple places great emphasis on the privacy of its users, which is demonstrated primarily by its constant efforts to improve the security of its services and products. However, although their security is at a very high level, which breach maximal eliminates, a special device appeared a few months ago that did it. It was developed by a company called Grayshift, which sold it for tens of thousands of dollars under the name GrayKey. For this investment, the buyer gained access to practically any iPhone or iPad with iOS 11 or older secured by Face or Touch ID, and passwords. Now, however, it is similar to breaking into a device toonec.
You could be interested in
According to available information, GrayKey exploited unknown bugs that allowed it to bypass the time interval during which the device is locked for a certain period of time after several unsuccessful code entries. This allowed it to constantly try number combinations, therebyonec broke into the device. In iOS 12 ale Apple discovered and fixed this bug, de facto decommissioning GrayKey.
This is what GrayKey looks like:
Gallery
Although there is relatively little information about this device, according to Forbes magazine, which obtained a statement from a high-ranking police officer, GrayKey can handle devices with iOS 12 only a fraction of what he was capable of before iOS 11. He can now “pull” from the device maxat least some unencrypted files and some metadata, which will not help investigators much in their work. Moreover, it can be expected that Apple will work significantly to strengthen security in this regard, thus decommissioning GrayKey completely.
You could be interested in
So if you belong to the type of user who is almost panicky afraid of their privacy and the existence of a device that could reveal it makes you nervous, you can start cheering. iOS 12 may please you for this reason as well. On the other hand, the work of the police officers will now be significantly more complicated due to the impossibility of obtaining data from the criminal's phone.
If anyone were serious about security, they would not allow any external access to the device without direct password authorization (from an unlocked phone). Code for a few lines... But citizens would have too much privacy. Just PR talk for the plebs.
I'm neither a criminal nor have a "panic fear of my privacy", but of course I'm glad that the use of this box was made impossible. Investigators have various options to get access from a criminal, but it is not right that they automatically have access to anyone's data. That's why I encrypt what I can, even if it's "crap" that nobody cares about, but it's my crap and nobody cares about it.