IPhone’s passcode limit can be bypassed by simple method

Untethered iOS

Untethered iOS

"If you send your brute-force attack in one long string of inputs, it'll process all of them, and bypass the erase data feature", Hickey said.

A security researcher claimed that he was able to discover an iOS vulnerability that allowed a brute force hack to bypass an iPhone's passcode, prompting Apple to respond to the report. He has since retracted this claim after Apple stepped in to "correct" him.

According to Hickey, Apple iPhone's ironclad security features can be circumvented and the device can be unlocked as long as you have a Lightning cable connecting the phone to a computer.

As Matthew Hickey's discovery shows that bypassing the data-erase feature in any device when it is required to be connected to a computer though it does not harm the iOS 12 users with the USB Restricted Mode which simply limits a USB connection for the charging objective only.

People consider iPhone as one of the most secure devices in our pockets. This meant that if the hacker sends the iPhone a bunch of passcodes, it will bypass the erase data feature.

Hickey said that if an iPhone is plugged in and a hacker sends it passcode guesses using keyboard input, the tries triggers a risky interrupt request.

However, Hickey found that, if an iPhone or iPad was plugged in, any keyboard input would trigger a risky and disabling interrupt request.

For those unfamiliar with hacking terms, brute force attacks are basically as its name implies, an attack that focuses purely on "force" where in hopes that the system will eventually give way after numerous hacking attempts. This can be done by enumerating each code from 0000 to 9999 in one string with no spaces.

This method also works with six-digit passcodes by running all the possibilities between 000000 to 999999 at one time.

"I went back to double check all code and testing", said Hickey in a subsequent message on Sunday. Hickey said he reported his findings to Apple before tweeting about them.

On the other hand, Apple's representative counteracts these arguments, simply by noting, "The latest information in relation to a passcode bypass on iPhone was an error and an outcome of an inaccurate experiment".

Recommended News

We are pleased to provide this opportunity to share information, experiences and observations about what's in the news.
Some of the comments may be reprinted elsewhere in the site or in the newspaper.
Thank you for taking the time to offer your thoughts.