Need Help iPhone 15 Hacked

I’m not sure what could have happened to the device, but I’m almost 100% sure that nobody had physical access to it during my ownership.

when I first got the device, I remember seeing something that read ATT/Apple Bootstrap in analytics. ATT is not my carrier.

Maybe this refurbished device is defective or was compromised prior to my receiving it.

I was EXTREMELY careful with this device. I have it on lockdown mode. I only have a handful of needed applications and rarely connect to WiFi. I have location services disabled.

Up until a few days ago, my analytics read location services disabled, opt in 3rd party “true”. It now reads false. It read true for a very, very long time.

As far as the sharing goes, this is from my analytics:

activeiMessageUser":1,"automaticSharingEnabled":2,"musicAutomaticSharing":false,"newsAutomaticSharing":false,"photosAutomaticSharing":true,"podcastsAutomaticSharing":false,"safariAutomaticSharing":true,

Nowhere in the device can you see that these items are being shared.

I can’t copy and paste from my email logs to show the KCF Network entries (research leads me to believe that this is Apple related) in my email account or the statements about using my saved passwords.

This is from my iPhone analytics showing just two of the many device ids:

deviceId":"3d9c6eaa7bed53a105c8db65bbbea383ad523a56","message":{"Count":719,"isSupported":true,"language":"en"},"name":"SafariTrafficDistribution_highersampling","sampling":100.0,"uuid":"132de8ce-535e-49a5-9c7b-ae00ea1949d1_2"}

{"deviceId":"e9c28ee867fca35b585c1b11187b5a691840c469","message":{"Count":7,"daily_total_numOfFetchesPerDay":0},"name":"UT_AISFetch_CountPerDevice","sampling":100.0,"uuid":"13ab465c-27c3-467d-a166-ee005ed5184e_4"}

I think I will take the device to an Apple Store and have them remove and reinstall all of the software and change my passwords, etc.

I’m concerned about how to prevent such a thing from happening again.

Thanks for all of your responses. They were much appreciated:)

rolloverReason":"scheduled","servingCarrierName":"Verizon US","startTimestamp":"2024-06-26T00:00:00Z","stateDbType":"sqlite","stateDbVersion":3,"trialExperiments":"2","trialRollouts":"2","version":"2.4"}

{"deviceId":"3d9c6eaa7bed53a105c8db65bbbea383ad523a56","message":{"Count":1,"activeSMSUser":0,"activeTreatments":"100:210304_control,101:210415_control,102:210304_control,103:210304_control,105:210304_control,106:210304_control,107:210304_control,104:210304_control,108:210601_control,109:20419_control","activeiMessageUser":1,"automaticSharingEnabled":2,"musicAutomaticSharing":false,"newsAutomaticSharing":false,"photosAutomaticSharing":true,"podcastsAutomaticSharing":false,"safariAutomaticSharing":true,"tvAutomaticSharing":false},"name":"SocialHighlights_SettingsStatus_v1_boolean","sampling":100.0,"uuid":"

Sorry! It didn’t all appear when I first posted.

Question, if you can answer it. I changed the passwords on a couple of my apps. I could see from the application logs that whoever hacked my vpn and is trying to hack into my email was having difficulty accessing the accounts for a bit. I did not save the passwords in my iPhone. I do believe that they got into my vpn again and that they are stuck at the same place they were at prior to me changing my mailbox password. My question is about device ids. Should there be multiple device ids showing in analytics on the same day? I believe that there are approximately four in mine. I’m not sure if this is related to the issues that I am having. Today, I noticed that some of the settings in my iPhone were changed. I’m almost 100% certain that this phone was not compromised by anything that you have listed during the time that I have owned it. Other than what I have previously written, the only other thing that seems odd to me is in analytics, sometimes my primary network interface is cellular and sometimes, it is listed as “other”. It should always read cellular. I’m at a loss as to what happened to my phone. I know analytics aren’t made for the consumer. I guess my only option is to have the Apple Store remove and reload the software. If that doesn’t work, I guess I’ll purchase another phone. I just want to know how I’m supposed to make sure something like this doesn’t happen again.

It won’t let me copy and past the sharing. It keeps getting cut off after I post it. Sorry!