We Can Hack Any iPhone, Any Android Phone, White Hat Hackers Claim

[The AchieVer]

We Can Hack Any iPhone, Any Android Phone, White Hat Hackers Claim 

 

Israeli company Cellebrite, known mostly for its iPhone unlocking solutions offered to governments worldwide, claims it has developed new software that can break into any phone out there running either iOS or Android.

The firm, which has taken to Twitterto advertise its premium solution, says it can extract pretty much every little bit of information stored on iPhones or Android phones, including data from third-party apps like WhatsApp, Facebook, and others.

Information posted on its websitereveals that Cellebrite can also access data that has already been deleted from the phone or even recover information from damaged devices.

“Bypass or determine locks and perform a full file system extraction on any iOS device, or a physical extraction or full file system (File-Based Encryption) extraction on many high-end Android devices, to get much more data than what is possible through logical extractions and other conventional means,” Cellebrite says.

“Gain access to 3rd party app data, chat conversations, downloaded emails and email attachments, deleted content and more, increase your chances of finding the incriminating evidence and bringing your case to a resolution.”All new iPhones can be unlockedCellebrite, which emphasizes that its offering is only aimed at governments trying to unlock devices used by criminals or terrorists, says its unlocking system supports Apple devices running iOS 7 to iOS 12.3, as well as the majority of high-end Android devices manufactured by Samsung, Huawei, LG, Xiaomi, and Motorola.

While the Israeli white-hat hacking company explains that its solutions aren’t supposed to fall into the wrong hands, the simple fact that it’s in possession of exploits that could unlock the majority of devices could be reason enough for the manufacturers of these smartphones to increase their efforts of patching these security holes.

Apple has already tried to deal with Cellebrite hacking products as part of several iOS updates, and the company even introduced a new feature that blocks USB connections when it’s been more than an hour since the iPhone was locked.

 

 

 

Source

[lolsee2]

iPhones since iPhone 4 use the Broadcom WiFi SoC but otherwise makes no mention of whether the exploit works on iPhone.

 

Most mobile phones allow the baseband to have full access to the entire device, which is why an exploit of the baseband can turn into a full device compromise, but AIUI iPhones don't do this and keep the baseband as a separate unprivileged component, specifically to defend against this attack vector.

 

So a baseband compromise might get you access to any data going over the baseband (e.g. phone calls, unencrypted data traffic, etc) but shouldn't get you access to the rest of the device.

[straycat19]

On 6/17/2019 at 8:16 AM, lolsee2 said:

iPhones since iPhone 4 use the Broadcom WiFi SoC but otherwise makes no mention of whether the exploit works on iPhone.

 

What part of "supports Apple devices running iOS 7 to iOS 12.3" doesn't include the iPhone?  The only reason to develop this hardware/software is to crack iPhones.