Police Can Unlock Any iPhone With Cellebrite’s New Tool
It used to be trivially easy for police to scoop up all the private data on cell phones seized in the course of an investigation. The era of smartphones brought new challenges and new opportunities for investigators. While smartphones contain so much more information than the flip phones of yesteryear, they’re also much harder to access without a password. Several companies offer device unlocking services to law enforcement, but they’re limited by devices and software versions. Israeli forensics firm Cellebrite says it can free up the data on any iOS device up to the latest v12.3.
The new iPhone cracking capabilities come by way of a new version of the company’s Universal Forensic Extraction Device or UFED. Cellebrite calls the new UFED Premium an “exclusive solution for law enforcement.” Investigators can purchase the device and use it to perform data backups from locked smartphones. Without something like the UFED, getting a warrant to copy a phone’s contents won’t do police any good when the device in question is locked and encrypted. There’s also some concern these devices could end up in the hands of criminals.
Apple just released iOS 12.3 a month ago, so Cellebrite must have gotten its hands on a very sensitive vulnerability in the software if it’s capable of unlocking any device. Odds are Cellebrite paid an arm and a leg to some security researcher for the exploit, and now it’ll leverage it to make money from governments and law enforcement until Apple can discover how the UFED Premium works.
Cellebrite also claims UFED Premium can extract data from a number of popular Android phones like the Galaxy S series up through the S9, as well as phones from LG, Huawei, and Xiaomi. That suggests it has found manufacturer-specific flaws and not something that affects all Android devices. So, that’s at least one bit of good news.
Cellebrite is proud to introduce #UFED Premium! An exclusive solution for law enforcement to unlock and extract data from all iOS and high-end Android devices. To learn more, click here: https://t.co/WHsaDxzoXz pic.twitter.com/BSixEkyAuL
— Cellebrite (@Cellebrite_UFED) June 14, 2019
This isn’t the first time Apple has been faced with a phone cracking problem. Another security firm called Grayshift made a business out of selling its GrayKey phone unlocking station. It used custom software to brute force Apple PIN codes, but Apple mitigated the usefulness of the GrayKey by disabling data on the Lightning port when devices were locked and idle. It’s unclear if this technique can stop UFED Premium, but it sounds like not.
Apple will inevitably block UFED Premium, but the company probably chose this moment to announce because v12.3 just launched. Cellebrite likely figures it has some time to sell devices and unlocking services before they become useless.
Continue reading
NASA’s OSIRIS-REx Asteroid Sample Is Leaking into Space
NASA reports the probe grabbed so much regolith from the asteroid that it's leaking out of the collector. The team is now working to determine how best to keep the precious cargo from escaping.
Intel’s Raja Koduri to Present at Samsung Foundry’s Upcoming Conference
Intel's Raja Koduri will speak at a Samsung foundry event this week — and that's not something that would happen if Intel didn't have something to say.
AMD’s New Radeon RX 6000 Series Is Optimized to Battle Ampere
AMD unveiled its RX 6000 series today. For the first time since it bought ATI in 2006, there will be some specific advantages to running AMD GPUs in AMD platforms.
RISC-V Tiptoes Towards Mainstream With SiFive Dev Board, High-Performance CPU
RISC V continues to make inroads across the market, this time with a cheaper and more fully-featured test motherboard.