Posted on 08/12/2019 5:17:39 PM PDT by cba123
Apple is having a bad week. Just days after Face ID was hacked and the company’s “user-hostile” iPhone battery practices were exposed, an extraordinary story of Apple neglect has resulted in a warning every iPhone and iPad user needs to know about.
Picked up by AppleInsider, security firm Check Point has revealed it has found a way to hack every iPhone and iPad running iOS 8 right up to betas of iOS 13. This spread covers eight years of devices (iOS 8 supports the 2011 iPhone 4S) and, with Tim Cook stating there are 1.4BN active iOS devices around the world, this is worrying news for the owners of pretty much all of them.
(later goes on to say not vulnerable right now, could be in the future)
(Excerpt) Read more at forbes.com ...
Did I say the Apple security was 100%? No, Fuzzylogic, I did not. As I described to you, they aren’t, with TouchID at 1 in 50,000 and and FaceID at 1 in 1,000,000. . . and they are still protected by a PIN as well. But a finger use can be forced out of a user by the means of brute force which allows a criminal or the authorities (although sometimes they are one and the same), but FaceID requires the user has to willingly look at the screen with their eyes open. There are only a certain number of attempts allowed for unlocking before one has to use one’s PIN. But, as I said, all it takes to compromise a PIN is for an observant crook or a member of the police to be watching with a pair of binoculars when you unlock your phone and they’ll know your PIN. PIN unlocking happens far less often with a user utilizing either of the alternative unlocking methods.
What Apple’s security is is far better than anything on any Android device, including their PINs.
No, your obvious implication was that ALL Apple components are made in China, and if you had bothered to READ my response you would have seen there are several components made in China. “Yes” would not have been a correct response, PAR35, but my point is that the components that would have the ability to make a difference in the operation and control of Apple devices are NOT manufactured in China and cannot easily be modified or inserted by the Chinese as YOUR post was intended to imply to some ignorant readers. I disabused those readers of your intended implication, in detail.
This isn’t an Apple vs. Android thing. I’m against using biometrics, I believe it is a mistake. I’ve seen way too many creative hacks and hidden vulnerabilities that have lurked for decades. There will be other implementations, other than from Apple. I don’t use fingerprint locks either.
Then there’s the issue of using such technologies for giving or receiving payments considering how the giant tech firms are behaving. I’m just going to stay away from it.
Debit and credit cards are far more susceptible to fraud and theft than biometric identity devices which generate single use card numbers for every purchase, which can never be used again. People have been so inured to the use of a card, they think nothing of handing them to complete strangers for minutes at a time in restaurants, complete with their signatures and security codes on the back. . . strangers who take them away, out-of-sight for who-knows-what possibly nefarious acts such as cloning the card, a trivial process, while they blithely continue eating desert or drinking their after meal coffees.
Biometric devices with card number substitution simply are not susceptible to theft or fraud on your account. . . and since biometrics requires that it has to be you using your device, the only way your account can be drained is coercion with someone physically forcing you to do it yourself, a very rare crime.
Both FaceID and TouchID are a convenience that makes using the devices easier and in fact more secure. They are NOT vulnerable to photographs of fingerprints or faces, not even 3D face images, so they are not successfully or easily spoofed. While they CAN be spoofed, it takes a large expense to do so, but by the time a bad actor can mount a successful spoof of either after obtaining access to someone’s device, the time period in which such a spoof would work will have long since elapsed, and they’d be back to inputting a PIN to gaining access.
In addition, if a user knows his device is going to be seized, a simple simultaneous two-button press for a short period of time before his device leaves his possession disables either TouchID or FaceID until the PIN is re-entered. . . or, a quick shut down accomplishes the same thing. Restart requires the PIN to activate either form of biometric unlocking.
Sorry I think you’re missing the point. Layering security techniques on top of biometric signatures isn’t the problem, we have well established and accepted methods. The fundamental issue I have is that my biometric signatures can’t be changed and is being used as the root of the process.
I see security vulnerabilities not made public and having blind faith that something won’t be compromised isn’t wise. The direction of the tech giants, the back-end connectivity, data analytics, and connections being made between banks and social media is a dangerous one.
We disagree on where to place our trust. I don’t trust the *companies* involved. Their reach has already gone from deplatforming people on social media to closing PayPal and Chase bank accounts. Giving them the potential to abuse something I can’t change is just something that I, personally, will stay away from.
That we actually don’t disagree on. However, you can make choices in those companies which do less of that kind of activity and which is less abusive of its customers. In my opinion, Apple is less abusive of its customer’s privacy and does not send its customers’ private data any further than it must. We have no control over what the lead ship of PayPal and Chase Bank do that abuse their positions politically. That will shake out in the market, in law, the courts, and with their stockholders. However, much of it starts with keeping your private data ON YOUR DEVICE, and in that Apple excels, contrary to any device that runs Google’s Android OS.
In case you don’t know much about electronics - they are made up of many components. While someone might say x is made in y country, it’s really more correct to say that it is assembled in y country. More important is where the components are made. And for many devices, some components may be made in Korea, some in the US, some in India or Burma Malaysia or Taiwan, and for Iphone, components are made in China.
Sort of like airplanes. Boeing 737 MAX, for example. Components are made in China. Does that mean everything in the airplane is made in China? No, it means components are made in China. And we can see how that ended up.
I DO know quite a bit about electronics, having owned and operated a multiple platform computer support business for over 40 years, PAR35. I suspect I know a lot more than you do.
Someone above asked you if you have a reading comprehension problem. Apparently you do, because you are parroting back to me the exact thing I just posted to you about how Apple products are assembled from components manufactured in many other places. . . but what I told you seemed to elude your comprehension. Just because something may be assembled in one place does not mean it was “manufactured” there. In fact, the Federal Trade Commission only allows something to be labeled “Manufactured in the USA” if more than 90% of its components are also manufactured here. That was why Apple could put “Manufactured in the USA” on its 2013 Mac Pro, manufactured in Austin, Texas.
I also know somethings about the components that go into Apple products because this subject has come up in Apple threads before and I researched it thoroughly. You obviously have not.
Sort of like airplanes. Boeing 737 MAX, for example. Components are made in China. Does that mean everything in the airplane is made in China? No, it means components are made in China. And we can see how that ended up.
Now you are impugning Boeing and the Boeing 737MAX as having some problems associated with components made in China. Nothing could be farther from the truth. The programing was done in Everett, Washington, and the decision to make the warning alarm for climbing at a too steep an angle override in the auto-pilot software and another system that would have automatically handled the issue an OPTIONAL PURCHASE was made in the Corporate headquarters in Chicago, Illinois, by some marketing puke. The TRAINING of the pilots in the foreign airlines was inadequate was a combination of Boeing’s and the foreign airlines’ fault for being unwilling to pay for extended training, but nowhere in there do I see anything to do with CHINESE COMPONENTS.
What I do see is PAR35 making a lot of unwarranted assumptions and posting them without evidence.
Ever hear of HCL? Cylent?
Ever look to see where the Boeing in-house software jobs are posted (Maryland, Bangalore, Germany, Sweden).
If you want to contend that components include the software, I can see your argument, so I'll concede that point. I should have been more clear there and said 'hardware components'.
As to the other poster, I ignore trolls. You aren't a troll, you are just an Apple Fanboi (and likely stockholder).
Sigh... EVERY major tech company supports Democrats. Oddly enough - Some liberal ‘tards recently threw a gasket when they found out that Apple had actually given money to a NON-Democrat....
It was one of the more stable releases in the last decade, but Apple split 14 into iPadOS and iOS specifically for deprecating 'that which has come before', and it worked.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.