• redditblackoutkekw@lemmy.zip
      link
      fedilink
      arrow-up
      3
      ·
      2 years ago

      I used summarize.tech to produce this synopsis:

      The video discusses the issue of iCloud unlocking and how it is being used to bypass the activation lock security feature. Despite reports from iPhone repair store owners and anonymous groups of a flaw in Apple’s activation server that allows stolen or lost devices to be unlocked, Apple has turned a blind eye and prioritized iPhone sales over security. The video highlights the negative impact of P-List FMI off or token FMI off service on honest phone vendors and local market prices, further questioning Apple’s commitment to user security. A YouTuber suggests that individuals should focus on developing valuable skills, and expresses concern about the lack of action from Apple against iCloud unlocking.

    • Skullvalanche@lemmy.world
      link
      fedilink
      arrow-up
      3
      ·
      2 years ago

      The video takes a long time to say this:

      There’s a new (and concerning) service known as “Plist FMI off” which appears to be able to unlock an iPhone that would otherwise be locked and useless to thieves.

      Disabling iCloud lock / Find My iPhone lock should be something only possible by someone working from inside Apple – thus implying that there’s likely an insider involved in this. Or at the very least, a security flaw in Apple’s network that’s allowing this to happen.

      The Youtuber seems to think that Apple should be forthcoming about declaring this vulnerability exists. IMHO, he is wrong to think that. Declaring the flaw before it’s been patched would only create a rash of iPhone thefts.

      Ideally, Apple is now aware of this situation, and is doing internal investigations to correct it.

  • ramblechat@lemmy.world
    link
    fedilink
    arrow-up
    0
    ·
    2 years ago

    I was under the impression that organised thieves had software that could reset stolen Iphones - otherwise why would they steal them? Is this exploit new?

    • michal@lemmy.world
      link
      fedilink
      arrow-up
      0
      ·
      2 years ago

      If you steal an iPhone and forget to ask the victim for a PIN at knifepoint, you can still sell it bricked for parts. Search for locked iPhones on eBay, they go for $100 to $200.

      • ChocoLemming@lemmy.world
        link
        fedilink
        arrow-up
        0
        ·
        2 years ago

        Does that mean the serialisation of parts isn’t particularly effective at reducing thefts? I’ve been wondering about this as some say it is effective and others say it isn’t 🤔.

        • Marcy_Stella@lemmy.world
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          Serialization is only on certain parts so things such as housings or charging ports still have good value and serialization is on a specific chip so while those parts do sell for less, a skilled repair technician could move the chip over assuming the whole part isn’t fried and it’s just damaged. There is less value in locked phones but there is still material value and they often steal the phone then get the phone number for the device and try to trick the user into removing the device or phishing their Apple ID as find my doesn’t require two factor to remove, only the password.