Reply With Quote
FBI
Federal bureau of sucking
"we can't do it""judge tell them to do it foe us"
Pathetic sons of s
bad ass modafuka
McAfee founder is running for president as a libertarian.
Says FBI's request to a judge to force apple to open up iPhones is not only gay as , but the beginning of the end for the USA
He says his team of hackers can hack the san Bernardino iPhone in less than 3 weeks or else he will eat his own shoe in live television. On Neil Cavutos show
What a pimp! Fi ally talking truth
FBI
Federal bureau of sucking
"we can't do it"
Pathetic sons of s
lol
What a bad ass mofo.
Btw go to mcafee16.com
And click on any link. You get a 404 page
His "team" should hack an iPhone and show them doing it with "social engineering."
The real trick is the fused device UID. No amount of social engineering will get you that though. You certainly can get it off the CPU. Companies like chipworks can do it, I'm pretty sure the NSA and the FBI can too.
But that's not the point of this whole thing. What the FBI wants is a court precedent. They're not used to be told 'no' when there's a court order.
You can read the entire security guide here, btw... it's not secret or anything like that... that's what's good about strong crypto:
http://www.apple.com/business/docs/i...rity_Guide.pdf
They haven't asked Apple to crack the phone, but to remove the 10-bad-login-then-erase-phone protection, so the Feds could brute force the password.
Last edited by boutons_deux; 02-19-2016 at 01:07 AM.
That's what Apple would need to do too though. Apple doesn't store the devices UIDs...
Bend over, I'll give you a in' UID
Tim Cook might take you up on that offer
apparently he has before:
http://www.thedailybeast.com/article...es-before.htmlApple CEO Tim Cook declared on Wednesday that his company wouldn’t comply with a government search warrant to unlock an iPhone used by one of the San Bernardino killers, a significant escalation in a long-running debate between technology companies and the government over access to people’s electronically-stored private information.
But in a similar case in New York last year, Apple acknowledged that it could extract such data if it wanted to. And according to prosecutors in that case, Apple has unlocked phones for authorities at least 70 times since 2008. (Apple doesn’t dispute this figure.)
In other words, Apple’s stance in the San Bernardino case may not be quite the principled defense that Cook claims it is. In fact, it may have as much to do with public relations as it does with warding off what Cook called “an unprecedented step which threatens the security of our customers.”
"since 2008"?
iOS 8, released in Sep '14, greatly increased encryption, so 08 to 14 encryption was weaker.
If the terrorists had an iOS8 or later, perhaps the encryption really isn't breakable by Apple.
http://arstechnica.com/apple/2014/09...-to-cops-moot/
McAfee does make a great point though. The US is far behind in cyber war fare because they won't hire the best hackers who might be weed smoking facial tattooed, pierced misfits. They only hire career IT technicians that would rather be at home collecting their federal retirement. Pathetic
USA is willing to hire jihadist terrorists to do their fighting for them but they wont hire a punk elite hacker??
Pathetic
I don’t understand why the Feds have not ASKED the private sector for help a month ago?
They are probably embarrassed
Btw I am just getting back into Unix and holy how much more efficient it is than Windows or Crapple
You can get accomplished in seconds what it takes ages under a UI OS and most of your time you are waiting for the hourglass to go away
Are elite hackers still using Unix tbh????
Page Not Found
Oops! That page doesn't exist!
Did Apple get a court order to force them to take it down?
Schneier: "this is what a backdoor looks like"
https://www.schneier.com/blog/archiv...ting_an_i.htmlEarlier this week, a federal magistrate ordered Apple to assist the FBI in hacking into the iPhone used by one of the San Bernardino shooters. Apple will fight this order in court.
The policy implications are complicated. The FBI wants to set a precedent that tech companies will assist law enforcement in breaking their users' security, and the technology community is afraid that the precedent will limit what sorts of security features it can offer customers. The FBI sees this as a privacy vs. security debate, while the tech community sees it as a security vs. surveillance debate.
The technology considerations are more straightforward, and shine a light on the policy questions.
The iPhone 5c in question is encrypted. This means that someone without the key cannot get at the data. This is a good security feature. Your phone is a very intimate device. It is likely that you use it for private text conversations, and that it's connected to your bank accounts. Location data reveals where you've been, and correlating multiple phones reveal who you associate with. Encryption protects your phone if it's stolen by criminals. Encryption protects the phones of dissidents around the world if they're taken by local police. It protects all the data on your phone, and the apps that increasingly control the world around you.
This encryption depends on the user choosing a secure password, of course. If you had an older iPhone, you probably just used the default four-digit password. That's only 10,000 possible passwords, making it pretty easy to guess. If the user enabled the more-secure alphanumeric password, that means a harder-to-guess password.
Apple added two more security features on the iPhone. First, a phone could be configured to erase the data after too many incorrect password guesses. And it enforced a delay between password guesses. This delay isn't really noticeable by the user if you type the wrong password and then have to retype the correct password, but it's a large barrier for anyone trying to guess password after password in a brute-force attempt to break into the phone
But that iPhone has a security flaw. While the data is encrypted, the software controlling the phone is not. This means that someone can create a hacked version of the software and install it on the phone without the consent of the phone's owner and without knowing the encryption key. This is what the FBI * and now the court * is demanding Apple do: It wants Apple to rewrite the phone's software to make it possible to guess possible passwords quickly and automatically.
The FBI's demands are specific to one phone, which might make its request seem reasonable if you don't consider the technological implications: Authorities have the phone in their lawful possession, and they only need help seeing what's on it in case it can tell them something about how the San Bernardino shooters operated. But the hacked software the court and the FBI wants Apple to provide would be general. It would work on any phone of the same model. It has to.
Make no mistake; this is what a backdoor looks like. This is an existing vulnerability in iPhone security that could be exploited by anyone.
This is not rally a vulnerability tied to apple. All phones, or all computing devices for that matter can be hacked by installing hacked or jailbroken versions of the firmware and OS.
Usually its very hard to create these hacked OS versions thats why probably FBI is asking apple. s are pathetic.
im pretty sure china has hacked versions of every phone out there. This is the difference between USA pathetic IT resources compared to china or Russia for that matter
Btw it blows my mind that FBI is still trying trying to get at the data by going through the stock OS. Thats basically the first step a college grad would take to get in a phone
cant they build a hacked phone and physically move the storage units from that phone to it??? And then try brute force algos??? Are they really this re ed?
No...and yes....the info is wired into the hardware...cant they build a hacked phone and physically move the storage units from that phone to it??? And then try brute force algos??? Are they really this re ed?
That's how it's designed. The "pin" they're trying to hack is hashed, then encrypted with an AES key that's fused into the CPU at first run, and that Apple doesn't have and the OS can't read out.Btw it blows my mind that FBI is still trying trying to get at the data by going through the stock OS. Thats basically the first step a college grad would take to get in a phone
cant they build a hacked phone and physically move the storage units from that phone to it??? And then try brute force algos??? Are they really this re ed?
The two options are:
1) Run all combinations of the pins until it unlocks on the actual device (with the caveat that the OS slows down attempts after a certain number of incorrect guesses and/or deletes the data after a certain number of incorrect guesses)
2) Extract the key by other means (costly, time consuming, likely destroys the chip in the process and it's not 100% foolproof).
Pretty sure the FBI already imaged the encrypted flash. They could even prevent the data erasure with a hardware flash sim or locking up the chip. The slowdown though has to be worked around from the OS.
I'm also pretty sure they can do 2), but it's costly, time consuming and because it doesn't always yield results, not the preferred route, especially if they can get a court to order Apple to write what basically amounts to a bootable s that gives them unfettered access to the hardware AES engine (which uses the fused key).
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
