I’m trying to find a solution to address the most recent social engineering attacks to keep the attacker out of my digital life if they obtain my pass phones pass key along with my device. what is the best way to prevent?
Hello OR-24,
Thanks for choosing the Apple Support Communities. We see you're concerned about the security of your iPhone. We have a few steps to take to ensure you are completely secure.
First check out this guide to Safety Check.
How Safety Check on iPhone works to keep you safe - Apple Support
Next, have a look at using the built-in security protections on your iPhone.
Use the built-in security and privacy protections of iPhone - Apple Support
"Protect access to your iPhone
If you find your iPhone and personal accounts are targeted by sophisticated remote attacks, you can also help protect yourself with Lockdown Mode. Lockdown Mode offers an extreme level of security for the very few users who, because of who they are or what they do, may be personally targeted by some of the most sophisticated digital threats, such as those from private companies developing state-sponsored mercenary spyware. Lockdown Mode automatically protects Safari, Messages, Home, and many other Apple services and apps. Webpages and internet communications continue working, but with reduction in performance and usability. See Harden your iPhone from a cyberattack with Lockdown Mode.
To get personalized support for these practices, go to the Apple Support website (not available in all countries or regions).
To learn how Apple designs security into the core of its platforms, see the Apple Platform Security User Guide. To learn more about how Apple protects your information, go to the Privacy website."
Finally, if you feel your Apple ID has been compromised, follow these steps.
If you think your Apple ID has been compromised - Apple Support
We hope this helps.
Cheers!
Hello OR-24,
Thanks for choosing the Apple Support Communities. We see you're concerned about the security of your iPhone. We have a few steps to take to ensure you are completely secure.
First check out this guide to Safety Check.
How Safety Check on iPhone works to keep you safe - Apple Support
Next, have a look at using the built-in security protections on your iPhone.
Use the built-in security and privacy protections of iPhone - Apple Support
"Protect access to your iPhone
If you find your iPhone and personal accounts are targeted by sophisticated remote attacks, you can also help protect yourself with Lockdown Mode. Lockdown Mode offers an extreme level of security for the very few users who, because of who they are or what they do, may be personally targeted by some of the most sophisticated digital threats, such as those from private companies developing state-sponsored mercenary spyware. Lockdown Mode automatically protects Safari, Messages, Home, and many other Apple services and apps. Webpages and internet communications continue working, but with reduction in performance and usability. See Harden your iPhone from a cyberattack with Lockdown Mode.
To get personalized support for these practices, go to the Apple Support website (not available in all countries or regions).
To learn how Apple designs security into the core of its platforms, see the Apple Platform Security User Guide. To learn more about how Apple protects your information, go to the Privacy website."
Finally, if you feel your Apple ID has been compromised, follow these steps.
If you think your Apple ID has been compromised - Apple Support
We hope this helps.
Cheers!
As of right now, The security key will do nothing to prevent this type of attack. Unfortunately Apple has decided to NOT prompt for any form of two-factor when requesting to change the AppleID from an iOS device. If you know the phone’s passcode, you have complete control of that user’s enter AppleID.
The only solution is be extremely careful when inputting your passcode around others or switch to Android.
You are correct… however think I’ve identified a solution to the problem through screen time. Super simple solution that prevents someone from changing your Apple ID credentials on your phone. I’ve not been able to get around the screen time passcode using the phones passcode. Screen time allows you to disable and lock your account with a unique passcode and from what I can tell it requires your Apple ID and password if you forget your screen time passcode. Let me know your thoughts.
Thank you for your response... The primary vulnerablity I'm wrestling with is the idea that someone records me in public accessing my phone with my passcode and they swipe it from me in the process. Once they've got the passcode and the phone they own your Apple ID and it's a free for all from there. It would be nice if you could remove passcode access from important apps and or an Apple ID password change on your phone. Is there any plan in place on the product roadmap to improve these privacy gaps?
Instructions to bypass Screen Time Passcode:
Open settings app.
Go to screen time.
Tap Change screen time passcode
Tap Change screen time passcode again
Tap Forgot passcode
Type in your Apple ID and tap return
Tap Forgot Apple ID or passcode
Wait five seconds.
Enter Lock Screen passcode
You are now able to enter in a new Apple ID password. From here you can reset everything imaginable.
Fr
Yea… I see that. Disappointing! Apple should address this issue with Cheetah like intensity given their focus on privacy and security.
I’m trying to find a solution to address the most recent social engineering attacks to keep the attacker out of my digital life if they obtain my pass phones pass key along with my device. what is the best way to prevent?
