Digital Forensics Dispatch

Meet Law Enforcement’s Newest Password Cracking Tool for Mobile Devices

May 26, 2020

Back in 2018, mobile forensic firm Grayshift released their password cracking tool GrayKey. Strictly for law enforcement, the device possesses the capability of cracking a four-digit passcode in minutes, and a six-digit passcode in less than a day. However, for more complex passcodes, ranging from 8 to 10 digits, the device could take years to find the successful combination.

As reported by NBC News, Grayshift has developed new software that has the capability to reveal an iPhone’s passcode much quicker. The software, named Hide UI, has the capability to be installed on an iPhone via GrayKey and has the ability to track a user’s passcode when entered on the device. This means the device must temporarily be put back into the hands of the suspect. For example, suppose the device was given back to the user or suspect in order to speak with their attorney or write down phone contacts. Once the user enters the passcode, the tracking software records the passcode and reports back to law enforcement when plugged back into the GrayKey software.

Ethical concerns have arisen from news of the tool, including the potential for the software to be used without a warrant. In addition, there is a limit to the information known about the new software, since GrayKey requires their users to sign NDAs before fully explaining their software’s potential.

News of the tool comes at a time when Apple is constantly trying to keep iPhones secure and patch any known vulnerabilities. Additionally, while the software may assist in determining the iPhone’s password, extreme caution must be used when putting potential evidence back into the hands of a suspect.

Email:    Phone: 703.359.0700
Digital Forensics/Cybersecurity/Information Technology
https://senseient.com/services/digital-forensics