• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • Forensic Expert Questions Covert “Backdoor” Services Found in iOS


    As part of the Hackers on Planet Earth (HOPE/X) conference presentation, forensic scientist and iPhone jailbreak expert, Jonathan Zdziarski, detailed several backdoor security mechanisms that are secretly included in iOS by Apple. These mechanisms make covert data collection easier for Apple and governmental authorities according to Zdziarski. The forensic scientist recently confirmed that iOS is reasonably secure from attack by a malicious hacker but notes that the mobile OS includes several forensic service sand noticeable design omissions that make the OS vulnerable to snooping by forensic tools.

    These services, such as “lockdownd,” “pcapd” and “mobile.file_relay,” can bypass encrypted backups to obtain data and can be utilized via USB, Wi-Fi and possibly cellular. They aren’t document by Apple and are not developer or carrier tools as they access personal data that would not be used for network testing or app debugging purposes. While detailing these backdoors, Zdziarski makes it clear he isn’t a conspiracy theorist but does want to know why Apple appears to be deliberately compromising the security of the iPhone and opening the door to professional, covert data access. He had the following to say regarding the matter:

    I am not suggesting some grand conspiracy; there are, however, some services running in iOS that shouldn’t be there, that were intentionally added by Apple as part of the firmware, and that bypass backup encryption while copying more of your personal data than ever should come off the phone for the average consumer. I think at the very least, this warrants an explanation and disclosure to the some 600 million customers out there running iOS devices. At the same time, this is NOT a zero day and NOT some widespread security emergency. My paranoia level is tweaked, but not going crazy. My hope is that Apple will correct the problem. Nothing less, nothing more. I want these services off my phone. They don’t belong there.
    Zdziarski also went on to note that he isn’t the only one aware of these backdoors. Several existing forensic software companies, such as Cellebrite and Elcomsoft, are already exploiting them as part of the forensic services they provide to law enforcement. Consumers who want to limit access to these backdoor services are advised by Zdziarski to enable a complex passcode in iOS and use the enterprise Apple configurator application to set Mobile Device Management (MDM) restrictions and enable Pair locking which will delete all pairing records. This solution will block third party forensic software but won’t protect the device contents if it is sent to apple for analysis.

    Apple released a statement to Tim Bradshaw of the Financial Times, denying Zdziarski’s claims:

    We have designed iOS so that its diagnostic functions do not compromise user privacy and security, but still provides needed information to enterprise IT departments, developers, and Apple for troubleshooting technical issues. A user must have unlocked their device and agreed to trust another computer before that computer is able to access this limited diagnostic data. The user must agree to share this information, and data is never transferred without their consent.

    As we have said before, Apple has never worked with any government agency from any country to create a backdoor in any of our products or services.
    Source: Zdziarski, Tim Bradshaw (Twitter) via ZDNet
    This article was originally published in forum thread: Forensic Expert Questions Covert “Backdoor” Services Found in iOS started by Akshay Masand View original post
    Comments 3 Comments
    1. TDH Advocate's Avatar
      TDH Advocate -
      With this post it seems ever increasingly more like bull s*** that apple isn't working with the government. There is no reason for processes like those for just backing up. I can't wait for all these companies to begin showing exploits off to the public and forcing apple to remove them. Well probably they will just rename the scripts or remake them under a new pseudonym just to make it look better. But still, s*** like this needs to stop. The government and other companies should have no right to as much of our personal lives as they do. F*** the government.
    1. xWalmartCandyx's Avatar
      xWalmartCandyx -
      Hmmm i wonder if Ryan Petrich will release a tweak that blocks these backdoors
    1. SpiderManAPV's Avatar
      SpiderManAPV -
      Quote Originally Posted by xWalmartCandyx View Post
      Hmmm i wonder if Ryan Petrich will release a tweak that blocks these backdoors
      He always seems to... Petrich FTW