- ‘Game of Thrones’ failed women—and it’s a shame on its legacy Today 7:40 AM
- How to use Tor, the network that lets you browse the web anonymously Today 7:30 AM
- How to live stream Devin Haney vs. Antonio Moran on DAZN Today 7:00 AM
- Trump’s transphobic policies are disgusting—but they aren’t new Today 6:30 AM
- How to watch the Copa del Rey Final online for free Today 5:45 AM
- How to watch the DFB-Pokal final for free Today 5:30 AM
- Curvy Wife Guy drops music video for rap song ‘Chubby Sexy’ Friday 7:33 PM
- A ‘Black Mirror’-inspired miniseries is coming to YouTube via Netflix Latin America Friday 5:56 PM
- Kanye West appears on David Letterman’s Netflix show to talk Trump, TMZ, and Drake Friday 3:27 PM
- QAnon believers link small-town arrest to deep state conspiracy without evidence Friday 1:58 PM
- Instagram photos showing prison conditions spark massive protest Friday 1:33 PM
- ‘Gay rat wedding’ headline sparks amazing new meme Friday 1:03 PM
- ‘I read a gossip piece’ meme mocks Moby’s Instagram post Friday 12:39 PM
- Rotten Tomatoes wants to see your ticket stub to leave a verified review Friday 11:46 AM
- ‘Sonic the Hedgehog’ movie delayed to 2020 to fix his look Friday 11:39 AM
Hackers can use this feature to remotely lock your phone and hold it for ransom
Photo via Michael Behrens/Flickr (CC-BY-ND)
Using Two Factor Authentication doesn’t help with this one.
Apple‘s “Find My iPhone” feature is handy if you’ve ever forgotten your phone at dinner, at the office, or at a bar—or even if you just thought you had. Unfortunately, hackers are also finding Find My iPhone and its desktop counterpart Find My Mac useful. If they learn your Apple ID and password, they can use it to remotely lock your device and hold it for ransom.
Normally, Find My (Device) is used when your iOS or Mac product is lost or stolen. By signing in with your Apple ID and accessing its online portal, you can check where it is. If it is lost, you can post a message on the lock screen so the finder can locate you. You can also remotely lock or wipe your device, in the case that it has been stolen.
In this instance, however, hackers who’ve learned victims’ account information will remotely lock the device themselves. This is accompanied by a message asking for ransom before they will unlock it. Usually, the ransom is in Bitcoin, as it’s more difficult to trace. Several people have recently tweeted about the issue.
— Jovan (@bunandsomesauce) September 16, 2017
Normally, a measure such as two-factor authentication would protect against things like this. However, that doesn’t apply with Find My iPhone. The trusted device you may have wanted two-factor authentication messages sent to could be the one that’s missing. (However, couldn’t an email-based verification work instead here?)
With hacks and data breaches occurring on a regular basis, it’s likely that your email address, favorite username, and their associated passwords aren’t secret anymore. If you haven’t taken the time to ensure that you have a unique password for each and every service you use, a hacker can use the information gleaned from one leak to access another account. This seems to be what’s happening for these unfortunate Find My iPhone users.
Luckily, in testing this out, Lifehacker discovered that if your iPhone is passcode-protected, a hacker will not be able to lock you out. This was not the case for a password-protected Mac, however.
So if a hacker gets a hold of your password, there’s not much you can do. Your best bet for prevention is to use unique, difficult-to-crack passwords (and perhaps a password manager). You’ll also want to set a passcode on your iPhone, if you haven’t already. And if you’re not too concerned about your Apple device being stolen, you may also want to switch off Find My iPhone altogether.
Christina Bonnington is a tech reporter who specializes in consumer gadgets, apps, and the trends shaping the technology industry. Her work has also appeared in Gizmodo, Wired, Refinery29, Slate, Bicycling, and Outside Magazine. She is based in the San Francisco Bay Area and has a background in electrical engineering.