Apple quietly introduced code into iOS 18.1 which reboots the device if it has not been unlocked for a period of time, reverting it to a state which improves the security of iPhones overall and is making it harder for police to break into the devices, according to multiple iPhone security experts.
On Thursday, 404 Media reported that law enforcement officials were freaking out that iPhones which had been stored for examination were mysteriously rebooting themselves. At the time the cause was unclear, with the officials only able to speculate why they were being locked out of the devices. Now a day later, the potential reason why is coming into view.
“Apple indeed added a feature called ‘inactivity reboot’ in iOS 18.1.,” Dr.-Ing. Jiska Classen, a research group leader at the Hasso Plattner Institute, tweeted after 404 Media published on Thursday along with screenshots that they presented as the relevant pieces of code.
As a member of the intelligence community, I can almost guarantee that this is directed at the increased use of Cellebrite UFED hardware, specifically putting the device back into BFU mode, which removes cryptography-related memory allocations. This is also why you’re asked for your password instead of face or fingerprint upon reboot.
As a member of the Intelligence community, please go find another job and stop harming people. Thanks.
Some people’s job is to improve security by finding flaws.
IC refers to State actors. They don’t help people.
I assume being blown up by a terrorist is not everyone’s idea of a good time. Oh indeed anyones.
We have laws that prevent such things. We don’t need mass surveillance, just traditional LE
When they say they’re part of the intelligence community, it seems highly likely that they are spying on their own citizens, or at least that’s what their job entails.
Don’t be naive
The phrase “as a member of the intelligence community” is not the same “as as a mother”.
Assuming it is true, always a caveat on the internet, It would actually give them a unique perspective into the situation rather than just using it as a catch-all excuse for Karen’s to be an uninformed twit.
I am also an intelligent individual in a community! High five
I don’t know how Cellebrite is a legally operating company. Their entire business model is a violation of the computer fraud and abuse act.
When the government does it, it’s not illegal.
I’m sure the CFAA has an explicit exception for law enforcement anyway. Laws always do.
Cellebrite is developed in Israel, a country that legally should even exist, and is known for genocide, crime, espionage, manipulation and propaganda, more war crimes, illegal settlements, using their intelligence agency to assassinate political opponents abroad, etc.
The so-called “only democracy in the middle east”
Cellebrite isn’t American.
No that’s only for when poor people do it
It also wasn’t a quiet patch, users had to opt in.
Which is great, because you can’t warrant a password.