Apple Watch Ultra 2 Hacked

lennard160 wrote:!

Hope that happens soon or perhaps there's someone here who knows more about this issue?

yep

watchOS 10.4 includes new features, improvements and bug fixes, including:

• Tap to Show Full Notification setting now allows you to double-tap to expand the notification
• Using Apple Pay with Confirm with AssistiveTouch will require a passcode for additional security and will not support double-clicking the side button
• Resolves an issue that causes some users to experience false touches on the display
• Fixes an issue that prevents contacts from syncing to Apple Watch for some users

For information on the security content of Apple software updates, please visit this website: Apple security releases - Apple Support

Or read page 3

Series 9 and this happened to me on 4/3. Sent text messages out, attempted to access my online banking, accessed my iCloud and used find my phone, etc. once I removed my watch, several attempts were made to enter a numerical password. This was NOT a glitch.

Same happened to me today. I wonder is it only Ultra 2?

Experience the same with my watch ultra 2 today.

Did reset the watch from my iphone, it helped.

I didn't have wifi turned on, but my watch has e-sim with mobile data

There was never a hack, Apple admitted it was a bug and fixed it in OS 10.4

Google the release notes for 10.4

I'm sure hackers have simply found yet another vulnerability in safari/webkit or imessenger that lets them take over your ios device without you even knowing it as they do most iphones or ipads. At this point this is common affair for any ios devices to be exploited as soon as another vulnerability is found regularly, so why not a watch with those too.

Basic web searches show how common exploits have gotten against apple devices in general with their built-in services, and lucky for you, apple won't let you use another browser engine or messaging platform that would let you disable or mitigate the security weaknesses in their own core products.

https://duckduckgo.com/?t=ffab&q=ios+vulnerabilities+webkit+imessage&ia=web

It has happened again. Today April 1 at 9:40am EST (DST) my wife's Ultra II watch was hacked again. Multiple log in attempts were obviously being made. We immediately shut down the watch using the procedure I referenced in my previous posting - performing a hard reset holding the crown and side button for about 7 seconds. This is her second hack attempt that we are aware of. I don't care what some others have posted suggesting it was not a hack. This is clearly a hack attempt to get into the system. These are clearly deliberate and unauthorized attempts to get into the watch OS by a third party. Her watch is a cellular version and have both access to cellular service and wifi. Our wifi is behind a firewall so we believe this is an attack via cellular network. I am no expert so I cannot be sure. We need Apple to get serious about helping us prevent this phishing mode of attack from happening. Good luck to everyone.

Turns out it was not only Ultra, but somehow it doesn’t make me feel better

I couldn’t tap any buttons on the Watch, it felt like someone else was in control trying to do something else. I freaked out and reset the whole thing using paired iPhone. This is Apple Watch 1.

Software glitches can attempt to login to your online banking? I don’t think so…I don’t care what Apple says, this was an intentional attack.

Alpha_Imperium wrote:

They guessed wrong, so it locked for 1 min and then I factory rest it and unpaired it. And reset all my passwords

Never heard anything like this, but your last actions were correct, set it up as a new watch after resetting, then change or replace your wi-fi router with one with wpa2 or better

My Series 9 did it too. A few facts. 1. occurred while on wrist. 2. I have 4 digit simple password set up. 3 Had just opened Safari.

Past that, not sure what happened. I took the watch off and eventually it got locked out and I did a reset.

To be 'safer' I unpaired the apple watch (go to iphone, watch, info, unpair) and updated software and repaired and used an 8 digit login.

It's hard to know where this "hack" is coming from. The watch does not have it's own IP address, so probably not from the wifi. That leaves Bluetooth. But that needs to be pretty close ie.. someone driving around. Given how many of us have had this in the country, unless all these posts are from San Antonio, TX, lol, I would say that it's not bluetooth. So.... where then? it's pretty fancy, time consuming and expensive to create a hack from a download that does not have to be opened. I am usually pretty cautious about opening anything that is anywhere suspicious. So hard to know. Good luck!

This happened to me today as well on a Series 9. Text messages were actually sent to my husband that I never typed or physically sent myself. One reading, "I'm bored" and the other "Nothing." - the second message was a reply to one of his earlier messages to me today. I took a video and every time I clicked the crown button, it was as if someone was scrolling through my watch and selecting different applications to open. One was Find My and the others were in the fitness application and weather application (all of which would reflect locations of myself and my devices). I am very worried - especially given the data breach/hack that AT&T suffered over the weekend. I am not sure that they coincide - but nonetheless, am scared.

Thanks LD150 - your information appears to have been on target. Last night my Ultra 2 went into crazy-touch mode and I ended up here (and other places). After putting my watch on the charger I finally managed to enter my code and start the 10.4 install from my phone. After a couple of hours of plugging away, I went to bed with it still in "Preparing" mode. When I got up this morning it was ready to "Install" and I did so. A half hour later my watch was updated to 10.4 and it seems to be working fine. Sure looked like hacking at first, but it appears to have just been the bug that Apple noted they'd addressed in the software update. Why it took such an extremely long time remains a mystery, but perhaps the watch was still dealing with lots of spurious touch events.

May 3rd at home my Ultra 2 started acting weird with strange haptics. Then all kind very quick things were occurring including calendar events, new text… Took it off as I couldn’t get the turn off slider to work. They repeatedly entered wrong passcodes that locked the phone for 1… up to 15 minutes. I took my phone off blue tooth and drove away from my house before the 15 minutes. Somehow at 15 minutes they were back at it putting in passcodes so my phone is locked for 60 minutes but I was able to finally power it down. Very frustrating!!!

seems like Apple hasn’t issued any guidance on this issue which is concerning