April 24, 2024
Chronic Shoots Down Two Minute iPhone Passcode Cracking Claims

Chronic Shoots Down Two Minute iPhone Passcode Cracking Claims

Posted April 3, 2012 at 12:49am by iClarified
Will Strafach, a developer and hacker known as chronic, has shot down 'two minute passcode cracking' claims sparked by a recent video of the XRY software tool used by law enforcement.

The original article in Forbes said Micro Systemation, the company behind the software, "seeks out security flaws in the phone's software just as jailbreakers do." However, it turns out that they are just using Geohot's limera1n.

They do not use anything special that is "similar to" the exploits used in jailbreak programs; They are simply loading a custom ramdisk by utilizing the publicly available "limera1n" exploit by George Hotz. The ramdisk isn't even very special, because anyone could put together their own using open source tools. The only "special" thing XRY has done is create a tool that is simple enough to be utilized by LE personnel.


Strafach notes that this means that XRY does not work on the iPhone 4S, iPad 2, or iPad 3. He also takes issue with the two minute passcode cracking claim. In the video (which has now been taken down), XRY is shown cracking a password of 0000. If your passcode was something more complicated it could take far longer to crack. In fact, the company told Forbes that much.

"The more complex the password, the longer and harder it's going to be to access the phone," he says. "In some cases, it takes so long to brute force that it's not worth doing it."

Read More [via 9to5Mac]


Chronic Shoots Down Two Minute iPhone Passcode Cracking Claims


Follow iClarified
Add Comment
Would you like to be notified when someone replies or adds a new comment?
Yes (All Threads)
Yes (This Thread Only)
No
iClarified Icon
Notifications
Would you like to be notified when we post a new Apple news article or tutorial?
Yes
No
Comments (6)
You must login or register to add a comment...
Add Comment
Russell
Russell - April 4, 2012 at 6:48am
I have not read the TOS of Geohot's limera1n, but if he said it can't be commercially redistributed, can't he sue Micro Systemation?
Reply · Like
crosby87871
crosby87871 - April 3, 2012 at 11:49am
LOL guy get PWNED!
Reply · Like
Not Dumb
Not Dumb - April 3, 2012 at 7:21am
4 digits 10 possibilities per digit means 10,000 different options. Just set your iDevice to wipe after 10 attempts and choose some number that has no digit less than a 5. No brute force algorithm will guess your password with 10 guesses.
Reply · Like
Tom Braby
Tom Braby - April 4, 2012 at 3:58am
The claim is that they hash the key offline, bypassing the wipe policy. Still not as vulnerable as claimed.
Reply · Like
Paul
Paul - April 3, 2012 at 1:24am
I said exactly the same thing concerning the original article.
Reply · Like
Mes
Mes - April 3, 2012 at 12:54am
Makes sense. I thought the passcode was cracked way too easily. Older iOS versions were easy, but that changed after 4.x. Thanks Chronic
Reply · Like
Recent. Read the latest Apple News.
RECENT
Apple Shares Offical Trailer for 'Trying' Season 4 [Video]
Apple Shares Offical Trailer for 'Trying' Season 4 [Video]
T-Mobile Launches New 'Home Internet Plus' and 'Away' Internet Plans
T-Mobile Launches New 'Home Internet Plus' and 'Away' Internet Plans
Apple Seeds VisionOS 1.2 Beta 3 to Developers [Download]
Apple Seeds VisionOS 1.2 Beta 3 to Developers [Download]
Apple Releases macOS Sonoma 14.5 Beta 3 [Download]
Apple Releases macOS Sonoma 14.5 Beta 3 [Download]
Apple Seeds tvOS 17.5 Beta 3 to Developers [Download]
Apple Seeds tvOS 17.5 Beta 3 to Developers [Download]
More News
Tutorials. Help is here.
TUTORIALS
Where to Download macOS Monterey
Where to Download macOS Ventura
AppleTV Firmware Download Locations
Where To Download iPad Firmware Files From
Where To Download iPhone Firmware Files From
More Tutorials
Deals. Save on Apple devices and accessories.
DEALS
Anker Sale Offers Up to 50% Off Power Banks, Chargers, Smart Locks, More
Anker Sale Offers Up to 50% Off Power Banks, Chargers, Smart Locks, More
New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]
New 15-inch M3 MacBook Air On Sale for $149.01 Off! [Lowest Price Ever]
Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]
Apple 96W USB-C Power Adapter On Sale for 49% Off [Deal]
T-Mobile Offers Free Blink Security Camera System With 5G Home or Small Business Internet
T-Mobile Offers Free Blink Security Camera System With 5G Home or Small Business Internet
AirPods Pro 2 With USB-C On Sale for $189! [Deal]
AirPods Pro 2 With USB-C On Sale for $189! [Deal]
More Deals