A complex yet concerning tactic to hijack an iPhone, leaving the rightful owner permanently locked out, is reportedly on the rise.
According to a report from the Wall Street Journal, some iPhone thieves are manipulating a security feature known as the recovery key. This manoeuvre makes it exceedingly difficult for owners to regain access to their photos, messages, and data. Additionally, there have been reports of victims having their bank accounts emptied after these thieves accessed their financial applications.
However, it’s crucial to understand that executing this type of theft is not straightforward. It typically involves the thief observing an iPhone user entering their device’s passcode – possibly by looking over their shoulder in public places like bars or sports events – or tricking the owner into divulging their passcode. The physical theft of the device follows this breach of security.
With the passcode in hand, the thief is then able to alter the device’s Apple ID, disable the “Find My iPhone” feature to avoid location tracking and reset the recovery key. This key is a lengthy 28-digit code designed to safeguard users from online hacking attempts.
Apple’s stance and user responsibility
Apple has expressed sympathy for affected users and emphasizes the seriousness with which it regards any attacks on its users, highlighting its commitment to safeguarding user accounts and data against threats like these.
The company also cautions on its website about the responsibility users have to maintain access to their trusted devices and their recovery keys. Losing both could result in a permanent account lockout.
Protecting the passcode
Ensuring the passcode remains confidential is paramount.
An Apple spokesperson has advised using Face ID or Touch ID as a safer alternative to inputting the passcode in public spaces, preventing potential onlookers from learning it.
Adopting a longer, alphanumeric passcode can further enhance security, making it tougher for unauthorized individuals to guess. It’s advised to change the passcode immediately if there’s any suspicion it has been compromised.
Leveraging screen time
Another potential safeguard, though not officially recommended by Apple, involves utilizing the Screen Time setting. Originally intended to allow parents to restrict their children’s device usage, it includes an option to set a secondary password. This password would be needed to change the Apple ID, adding an extra layer of security against unauthorized changes.
Regular backups
Consistently backing up the iPhone, either through iCloud or iTunes, is another critical precaution. This ensures that data can be retrieved if the device is stolen. Additionally, considering alternative cloud services for storing important photos and sensitive information can provide an extra safety net, limiting the damage in the event of theft.
