Found a way to hack a turned off iPhone

Specialists from the Secure Mobile Networking Lab and the Technical University of Darmstadt discovered in Apple smartphones, a vulnerability that allows access to data even when the device is turned off. The attack involves chips that continue to work constantly so that a lost smartphone can be located.

The Bluetooth and UWB chips in several newer iPhones keep the NFC connection in low power mode all the time. On the one hand, this increases the security of data, since the user can use the Locator to determine the location of a lost or stolen smartphone, even when it is turned off, and on the other hand, it opens up opportunities for hacking the device.

To carry out a hack, an attacker needs to gain physical access to the victim’s smartphone and install a modified firmware on it. But in this case, he can steal valuable data without complex hacking. Another method does not involve replacing the firmware, since it uses a set of vulnerabilities in the Bluetooth module and the BrakTooth utility for exploiting them. This utility allows you to download arbitrary code via Bluetooth and execute it on the device.

The existence of a theoretical possibility of hacking the iPhone in the off state does not mean that hackers really use this method. They have much simpler and more reliable ways to obtain information, for example, using social engineering, when the victim herself voluntarily gives out everything that is required of her.