iPhones that are still running after being turned off may be attacked by malware

If the iPhone is still running after it is turned off, it may be attacked by malware.

If the iPhone is still running after it is turned off, it may be attacked by malware. Recently, some researchers have designed a mechanism based on this mechanism. A type of malware that can run when the user turns off their iPhone. iPhones that are still running after being turned off may be attacked by malware. iPhones that are still running after being turned off may be attacked by malware 1

A research team from the Technical University of Darmstadt in Germany has just disclosed a new method for loading malware onto iPhones . Worse yet, attackers can even succeed when the device is powered off. Although there is no evidence that this vulnerability has been exploited in the wild and may even require other attack methods, it is still a very hot potato for device manufacturer Apple.

TechSpot pointed out: This exploit is related to a feature in iOS 15 that allows Find My to continue working for hours after the device is turned off.

Specifically, chips used for Bluetooth, near field communication (NFC) and ultra-wideband (UWB) will continue to operate in low power consumption (LPM) mode even after the user shuts down the phone.

This special mode is not the same as the "yellow battery indicator icon" that is turned on in the "low battery" state when you use your iPhone normally.

It can be seen that when evaluating the LPM function, the school’s research team found that the Bluetooth LPM firmware was neither signed nor encrypted.

However, under the right triggering conditions, the research team claims that this firmware can be modified to run malware - conditions that would be beneficial to the attacker include jailbreaking the iPhone and ideally gaining system-level access.

If you have already delegated power, the Bluetooth chip vulnerability exploit mentioned here may be unnecessary. Even so, the researchers promptly notified Apple of the issue, but the Cupertino tech giant did not immediately respond to Motherboard's request for comment.

Fortunately, security researcher Ryan Duff said: "In the absence of additional exploits, it is difficult for attackers to launch attacks alone."

But if an attacker has the opportunity to directly exploit the Bluetooth chip and modify the firmware (there are currently no known similar exploits), things will become quite difficult.

Even if the iPhone is turned off, hackers can still use this vulnerability to locate the user's device.

Finally, in the May 2022 Arxiv preprint (PDF) report, the research team warned that LPM is an attack surface that must remain highly vigilant.

If someone with ulterior motives gets involved in deploying wireless malware on a powered-off iPhone, the consequences will be disastrous. iPhones that are still running after being turned off may be attacked by malware 2

Apple has always prided itself on its extremely high security, and even refused to unlock the iPhone when asked by the US government, but now it seems that this Security is a little funny.

It is reported that there is a special mechanism on the iPhone that will allow the phone to still run in low power mode (LPM) when it is turned off, so that it can continue to find the phone to prevent it from being lost, or continue to swipe the card through NFC and other operations.

But according to the latest report from NetEase Technology, researchers have recently designed a malware based on this mechanism that can run when the user turns off the iPhone.

According to research, the iPhone lacks a digital signature mechanism and does not even encrypt the running firmware in low-power mode. Scholars from the Technical University of Darmstadt in Germany have designed a method to hack into the shutdown process. iPhone.

Using this lack of encryption to run malicious firmware, an attacker could track the phone's location or run malicious functionality when the phone is turned off, as if it were an open door.

The researchers added: "The design of the LPM mechanism seems to be mainly from a functional perspective and does not consider security threats outside of the intended application. The search function will Turning the iPhone in the user's hand into a tracking device, the Bluetooth firmware function is not secure and may be manipulated or tampered with by malware. ”

In addition, if hackers find security holes that are vulnerable to wireless attacks, It is also possible to infect the iPhone's built-in chip, thereby completely breaking through the iPhone's security blockade. iPhones that are still running after being turned off may be attacked by malware 3

We all know that once the phone is turned off, it means that all functions will enter a sleep state and will not operate. It can only be operated when it is turned on. But some studies say that the iPhone is still running after it is turned off. What is going on? That was the original purpose.

According to reports, the chip in Apple’s iPhone will continue to run in low power mode (LPM) when the device is turned off. A few days ago, some researchers designed a malware based on this mechanism that can run on the phone when the user turns off the iPhone. Although this research is still theoretical, it also illustrates that there are certain security issues with Apple devices.

In other words, when the user turns off the iPhone, the device is not actually shut down completely. The built-in chip will continue to run in low-power mode, allowing the user to use "Find" Features include locating lost or stolen devices, or enabling continued use of Apple Wallets and car keys after their batteries are drained. But some netizens think that this setting is still very good.

Apple Inc. is an American high-tech company. Apple's revenue reached $365.8 billion,[169] founded in 1976 by Steve Jobs, Steve Wozniak, and Ronald Wayne (Ron Wayne) It was founded on April 1, 2007 and named Apple Computer Inc., and was renamed Apple Inc. on January 9, 2007. It is headquartered in Cupertino, California.

Apple went public on December 12, 1980. In 2012, it set a market capitalization record of US$623.5 billion. As of June 2014, Apple has become the world's largest company by market capitalization for three consecutive years. On August 19, 2020 local time, Apple’s market value exceeded US$2 trillion for the first time. [1] Apple ranked 9th in the 2016 Fortune 500 list.

On September 30, 2013, in Omnicom Group’s “Global Best Brands” report, Apple surpassed Coca-Cola to become the world’s most valuable brand. In 2014, the Apple brand surpassed Google and became the world's most valuable brand.

Ranked 6th on the 2021 Fortune Global 500 list.

At around 2:45 a.m. on January 4, 2022, Beijing time, the share price of the American technology giant Apple reached US$182.88, and its market value reached three trillion for the first time. USD level, this is not only the world's first 3 trillion market capitalization, but also equivalent to the GDP of the world's fifth largest economy, second only to the United States, China, Japan and Germany.

Beg Allen wallpaper to take photo album resources for a while ~ kneel down! Thank you! !

What environmental factors should UPS analyze before entering a country to carry out express delivery business?

Good sentences signed by friends circle (80 selected sentences)

Speaking of the famous ancient horses, one has been misunderstood for thousands of years, and the other has a tragic ending.

How to write a bill?

What is the top chapter of a calligraphy work? What does this mean?

What is the name of a pink flower that blooms on Longjiang Mountain in April? Some people say it's Dalbergia, right?

How to write melon seeds?

I fought too hard with Shen. When they used to be bridesmaids, they hugged Tang Ruoxin together, and Ruoyun Zhang was hugged by the best man.

Inspirational slogans for senior high school students are domineering and short