How iPhone thieves are locking owners out of devices l GMA 

Pretty much smh

But they care 🤷‍♂️

Because your data is encrypted. Not even they can access it. That’s why they can’t help.

@@tiagomaqz - they can help by not letting people change the Apple ID password just by entering your PIN. they should have to enter your password or answer security questions only you would know. Apple could fix that problem today and they should or they don't care at all.

They won't. That's why they're calling them rare situations.

You’re data isn’t there liability.

They just gotta look to see if he or his family is in the photos. lol smh

Apple has made it their mission not to know or be able to access your data. A side effect of that unfortunately is that they wouldn’t know how to get it back if it’s been compromised. Without that recovery code, they can’t do anything.

@@housepianist Apple shouldn't let you change the Apple ID password without knowing the password or security questions. That is their fault and they created the whole problem. Also it's universally stupid to enter your PIN in public places like bars or restaurants or night clubs or public transit. Use biometrics and enter the PIN as little as possible, never around people or even in their line of sight. Guard your phone and PIN with your life or you will lose it, Back up photos and contacts and passwords to other services like Google. Don't put all your eggs in one basket or you may lose them all.

I knew that since 2015 but thx tho

Apple needs to fix their ridiculous security of letting someone change your Apple ID password just by entering your PIN which they could over-see at a bar or ball game or concert or in a store or bus or subway. People need to stop being afraid of biometrics. The data is on your phone. Also you can set a Screen Time PIN - different than your regular one - and disable changing the password and other things without that. You can also get two security keys and add them to your account, which will prevent thieves from making changes. But the best security is never entering your PIN in public and using biometrics always. Apple should also let you REQUIRE biometrics to use saved passwords or Apple Pay or anything like that. Otherwise thieves could do plenty of damage by using Apple Pay to drain your bank accounts buying gift cards which are about as untraceable as cash and impossible to get refunded.

my passcode is 6 digits

My recomandation switch to S23 Ultra 😂 Android better all days !

@@supermanlegend7 No thanks. Keep your Android 💀

I saw this.

It angers me too that law enforcement can’t prosecute these thieves for stolen data

These people didn't use biometrics. They were entering their PIN in public, which is totally stupid with iPhone's security protocols. Apple needs to fix this and stop letting people change their Apple ID password by entering the PIN. That doesn't prove your identity at all and they just ignore biometrics if they are present. You should be able to require biometrics for purchases and saved passwords too so thieves can't do anything with a stolen phone and can't disable tracking or change your password without knowing the password. Apple is not protecting its users.

Apple needs to fix this dumb vulnerability immediately and not let people change your Apple ID password just by seeing you enter the PIN. That is amateur hour. A hacker from 1995 would know that was a bad idea. What kind of sense does that make at all? Knowing the PIN doesn't make you the owner of the phone, Apple.

Thank you!

@@ruth.. you’re welcome.

@@Bruce_K it’s not a vulnerability as Apple allows you to set two different passcodes just in case the first is compromised. Also there’s something called Face ID Apple uses to bypass the passcode so you don’t have to type it in.

No, sorry, since iOS 16 exists „safety check“ and „emergency reset“ and this is higher than the „privacy & content restrictions“

Thing is though sometimes apple has leaks and ur passwords might get corrupted.

@@yoBANNANA passwords are encrypted.

I took the lesson learned as buy an Android phone.

@@mowcowbell Androids are able to be compromised easier than iPhone so have fun with that.

@@dtxgmoney been rocking Android phones for almost 10 years. Never had a security issue.

All people need to do is stop entering their PIN in public. Only use Face ID or fingerprints. If that doesn't work, pull out a physical card or cash. Don't walk around holding your phone distracted. Keep your guard up. Thieves are weak and they prey on the weak. They look for easy victims and marks. Practice how to use Face ID so it works. Fingerprints are much better. Apple needs to fix the security flaws - resetting your Apple ID password and hijacking your account by entering a PIN should not be possible. I've heard there are work-arounds for the screen time PIN - they just say they forgot it and get right back to the PIN giving them total access to your phone. Android lets you set it so mobile pay and saved passwords require biometrics. Apple should do the same. Stop playing catch-up and get ahead of the game. Require biometrics, period. People are not going to trust them if it's so easy to hijack a phone. Also back up your data to Google, not just Apple - contacts, passwords and photos, at least.

Lol

Chase's app security is trash too, it's so easy for a thief to just click forget password and change it using text confirmation after stealing a phone. They don't even ask for last 4 of social or any security questions smh. Apple also should require an apple id password when factory resetting the phone, or when turning off icloud. Many users don't like biometric face id including me The 4-6 digit pin should only allow users to bypass the 1st stage of iphone not stage 2 and stage 3 where you can change all the password settings and wipe the phone. Security should not be sacrificed in exchange for convenience, apple of all companies should know that better than anyone.

It’s a wonderful security vulnerability… for me… I had a iPad that I was locked out of because I couldn’t remember the iCloud password… I followed the instructions from WSJ and “hacked” the iCloud account, changing the password and gaining full access to it again! Huge problem.. but it worked out for me 😬

this happened to me in Dominican Republic when I went to see my grandparents. They were able to steal money from my accounts easily even when I had an EXTREMELY difficult password. Now that I'm back on SAMSUNG, I know for sure I don't have to worry about nothing due to SAMSUNG KNOX!!!!

Big changes to what? Those people left their phone unlocked. Can’t teach logic 😂😂

Don't walk around looking at your phone. Be aware of your surroundings and keep your guard up. Thieves are weak and they look for weak people and easy victims.

in order for them to get access to his phone the thief watches him from behind and sees him entering his numeral passcode into his phone, and then they would snatch the phone away from him. that's how they were able to get access to his phone. had he used biometric log in like face id or fingerprint reader then these thieves would not bother going after him.

I was waiting for that too! 😩

google it

Me too. 💕✌🏿🙌🏿🙌🏿

This happens to very few people. Basically the owner uses the passcode to log in whilst a thief watches/films it in public to then steal the phone afterwards and using the passcode they already have.

@@tiagomaqz I see. Thanks for responding.

The thief could have been targeting him from far away with binoculars, or even just feet away but behind him and over the shoulders.

@@MasterKoala777 - you don't even need binoculars. They could use a phone with a telephoto lens and shoot slow motion video or a regular digital camera.

The thieves are still going for phone that are unlocked. They grab them and go in and try and use any financial apps that are unlocked with the password because the phone is unlocked. In this case the user needs to go in on another device and immediately put it in lost mode and do an erase as well.

@@GNX157 - they can't do anything if you have Fingerprint or Face ID to log into the apps, like banking. But if they see you enter the PIN or record it on camera, they can change your Apple ID password and access any saved passwords if they have your PIN, because of Apple's poor security, not requiring biometrics for saved passwords and banking and Apple Pay. They make it way too easy for thieves and they could fix this tomorrow.

Why? So if your wallet is stolen and your bank cash card passcode is 1234 and you account get cleaned up by criminals, your reaction is your bank is not secure?

​@Yg T it's 2023, I stopped using a wallet in the 90s. Nice try though

@@bluu_ice6554 ok so you've had no money or job since 90s, got it. Nice try though

slow and secure > locked out of phones

The face ID on apple devices is superior to the android alternatives, even the ones that have a retina sensor (which has been long gone for a while, everything now is just photo I.D.). They really should bring back touch ID… and always can more than one finger.

Face ID has never been slow on my phone (IPhone12), never been an issue. I do wish it also had a fingerprint scanner

@@LostChildOfTime There are a lot of android phones out there from different companies, they all don't offer the same security features so unless you tried every android phone how can you say whats better.

Face ID is more secure, plus I think Apple will bring back fingerprint but on the screen as a dual choice.

That's what I do. I got all my photos stored in my computer. Photos/videos won't fit in 5 GB iCloud and I don't want to pay subscription fee. The downside to offline backup approach is it isn't instantaneous compared to cloud storage.

I do it too

Nothing wrong with using cloud. Just use it with other methods of backing up your stuff and as you say, physical is nice.

The "cloud" sounds so fanciful & safe but some don't realize it's just a server somewhere. lol smh

@@shaggydawg5419 - if you can't afford $1-10 a month for backup, you are in serious trouble. It's better to have instantaneous real-time back up and use multiple services like Apple and Google. Don't put all your eggs in one basket which could be lost. Get all your email, contacts and photos backed up. Back up every day or more if you can. We don't want to be tied down to a computer. We want to be mobile.

Never enter your PIN in public. Use biometrics. That is the first line of defense. For more security with Apple, use a Screen Time PIN which is different to lock down your phone and prevent any changes to your account. the more you enter the PIN, the more chance of being robbed unless you have added security like a Screen time PIN or a physical security key or 28-digit recovery key. Unfortunately those things also limit your account in other ways like not being able to use iCloud with Windows any more and you are at more risk of losing your data if you lose the recovery key or security keys. It's one more thing that can go wrong.

No, you do both. Offline can fail too. You do 1 backup offline and one to another cloud service. Also, if he has a Mac the pics should be in his photos folder.

@@darthsigil - if you're locked out of your Apple ID, you lose all your data on all your devices. Also cloud storage with RAID servers is much better than anything normal people can do at home. I've had hard drives fail and phones die and lost data. I've never lost data with Google cloud yet over almost 6.5 years. Two cloud servers are better than 4-5 hard drives and cost very little in the long run. $1-10 a month per service for 50 GB to 2 TB. It would cost you more to buy multiple hard drives regularly and all the time it would take to backup the data constantly with redundancy.

Watch the WSJ report, thief's are taking control of your bank account set up via Apple Pay. I never do banking transaction on my phone

Exactly, I worked at an Apple store 8 years ago and if you brought in the receipt with your name and ID matching it was an easy issue to fix.

This video is irresponsible reporting. How it happens is there are thieves working in pairs. One watches from a high location for people entering the phone passcode, then directs the other what the code is and the phone to steal. The thief after theft immediately goes in and changes the Apple ID and pw. Now you’re locked out. Then the go in and use the ability to create the 28 character code, that only they the thief can use. That’s where the video picks up from.

Same here

All they need to do is stop letting people reset their Apple ID password by entering the PIN. That is poor security and sets you up to get robbed if you don't use biometrics. I think that's their point. It's a feature, not a bug. They want to say screw you to people who don't use biometrics as much as possible by leaving their phone wide open to attack. It's also poor security that you can use Apple Pay and stored passwords just by entering the PIN. they should require biometrics for purchases and saved passwords or at least give you the option to require it. Instead they just make the PIN a master key for everything by default. That is totally unsafe and ridiculously. To change the password, you should have to know the old password or answer security questions that only you would know. Period. Anything less is insulting our intelligence. Fix the problem, Apple. No more password changes without knowing the password or the security questions like any intelligent company requires. Convenience for someone who forgets their password should not come at the expense of security against thieves. Having a way to identify yourself in person to Apple should also be an option which would make recovery easier. What's the point of even having biometrics if you can just bypass them with a stupid pass code anyone could see or record you entering? Then they ignore the fact the thief using your phone doesn't have your fingerprints or face. You shouldn't be able to access anything sensitive without biometrics.

That's a great idea. I think access to iCloud accounts should require 2-factor authentication and users should be required to log in to the Microsoft authenticator app with a SEPARATE password. Thieves would need to know that specific password in order to be able to retrieve the one-time authenticator code that Microsoft would assign.

awesome!! thanks i was hoping the video would tell me tht 😂😂 silly me

ty

Content and privacy restrictions are turned off for me so every other setting under it is automatically off, including dont allow for password or account changes. Is this okay?

​@@Jbelly275 You have to turn it on and then change it to "don't allow".

@@joham ohhh ok thanks

You probably wrote this from your phone… 😒

@@sarumane666 yes I did but I use it out in public it’s not safe

Same... never going back to Apple ever.

Well of course we don't hear anything about Android. It seems like thieves consider iphones to be more profitable to resell than Android phones..

I recommend a usb drive on your keychain if you have a lot of important photos. Or you can put them onto your 32gb Apple Watch to display them

@@reardelt they can get your password from your password vault with your passcode

@@Slips85 Don't use password vault. Use another app for it.

30 years? iphone only been out for about 16 years

@@mr.nobody7405 macs

​@@mr.nobody7405yeh are you aware that there was digital data and scanned pics before 2007?

@@Teluric2 you know she talking about apple

@@PauI. learn apple history of products before commenting

I have apple devices and use face id and also fingerprint. Any financial apps on my phone require the password for that specific financial institution to gain access. Just having my phone doesn't automatically get you into any financial apps on my phone, unless you have the specific password for that financial institution.

How did you find it? Went into settings but didn’t find a Recovery Key, option.

The thieves can easily get into the bank apps if you have saved passwords and they get the PIN. Apple's security is a joke. They shouldn't let anyone change the Apple ID password without entering the old one or answering security questions and you shouldn't be able to use Apple Pay or saved passwords without biometrics, either. They just ignore the fact that the thief doesn't have your fingerprints or face and let them enter the PIN over and over or add their own face and fingerprints. They are a joke.

"shoulder surfing" basically looking over your shoulder or an area near you where they can see you put in your passcode without you noticing.

With that 100x galaxy phones snooping is easy

Then they get arrested for bank fraud. It would be smarter for the thief to go buy gift cards using Apple Pay which are almost untraceable and can't be refunded.

Cloud storage with RAID servers is better than your home PC or laptop. I've had several hard drives go bad and lost data and had a phone go bad and lost photos because they couldn't be backed up. Real time cloud storage is much better and I've never lost any photos for like 6.5 years. Cloud storage is cheap. You can get 15 GB with Google / Gmail for free which is plenty for most people. $1-10 each month will get you 50 GB to 2 TB. Having a physical backup is good too, but how long before it fails? Then what? Are you going to buy a new drive every 50,000 hours of use (mean time before failure with HDD)? High end SSD has a longer life, but also costs a lot more.

Also back up photos, contacts and passwords to Google. Don't put all your eggs in one basket. Better to pay $1-10 a month for Apple and Google Cloud with 50 GB to 2 TB of storage than risk losing all of your data. Back up every day. Back up photos in real time. I use Gmail so my mail is always backed up and accessible.

You don’t even need to move the photos. If you have google photos on your phone, you can set it up to upload automatically

It can’t be bypassed. The thieves who do this are looking for people who enter there passcode in public then they have access to the phone and can reset the iCloud passcode. The easiest way to prevent this is use Face ID when out in public or fingerprint sensor. Also using a alphanumeric code makes it harder for thieves to remember the password.

@@Andy1341000 Makes sense, but how are they getting stolen? My phone is the only source of communication other than my IPad, but that stays home if I’m out and about.

Passed out drunk people

@@Andy1341000 wait so do they shoulder surf for their passcode then physically steal the phone?

@@Andy1341000 I have my Apple ID backed up with two emails and my phone number connected to it snd I never use public Wi-Fi or enter my passcode when I’m around people

Thief can make new security key and it will replace the old one that it completely lock out

Hello how are you doing?

@@Violet-my5jq - No, they can't create a security key without entering the old one and removing it. Physical security keys can't be defeated.

No, the thieves see people enter their PIN using cameras or drones and then steal them and reset their password and lock them out with a recovery key.

Mac os more secure? There a book about mac malware..give me a break😂

All Apple needs to do is stop letting people change your password with the PIN that they could see in a bar or restaurant or on public transit or in a store. That is ridiculous. You should have to enter the password to change the password or answer security questions only you would know. They are making it too easy for people who forget their password or thieves. Also they should require biometrics for purchases and saved passwords, not let someone use the PIN and ignore the fact they don't have your fingerprints or face. Android is smarter.

I see people on the bus all the time entering their passcode to unlock their iPhone like fools, just asking to be robbed. Never enter the PIN in public where a camera or drone could see your fingers. If Face ID or fingerprint doesn't work, use a card or cash, don't enter the PIN ever in public, until Apple fixes this security issue.

Just carry some physical cards with you. Never enter the PIN in public with Apple, until they change their stupid behavior that lets you change the Apple ID password just by entering the PIN. Their security is a joke. I've never had any trouble with Face ID in public. The only time it doesn't work is in the dark with a dark screen too.

thieves will observe other people put in their passcode in public when the victim is not noticing.

Thank you

Someone said the thieves can easily work around that. You just say you forgot the screen time passcode and go right back to entering the normal PIN. I haven't checked this, but it would be easy to verify if it worked.

The main thing people need to do is stop entering their PIN and use biometrics as much as possible. They are stored on the device and Apple can't access them. Apple also needs to immediately disable changing your password with just the PIN. You should have to enter your Apple ID password to change it or answer security questions that nobody else would know. Apple's security is a joke. You get someone's PIN and you can make purchases and use saved passwords to clean out their banks and max out their credit cards, as well.

@@Bruce_K I always see those crime dramas where the cops take the dead guy's thumb to unlock his phone or worse, the bad guys chop off a thumb to get to a guy's phone. And then, just crazy glue or some glue project or a injury could mess up your thumb print. Nope.

@@OWK000- you could probably enter all 10 fingerprints and maybe someone you trust like a spouse or friend or relative. Sure your fingers could get messed up where they can’t be recognized, but it’s not very likely. Your face could get messed up too by a car accident or a fight. That doesn’t mean you should go around entering your PIN in public. It’s safest to only use biometrics and if they change you go to a private place and enter the PIN to change them. You guard your PIN like keys or credit and debit cards. Beware of thieves.

That doesn't help if the thieves see you enter the PIN and they could record it with a 4k video in slow motion even or a drone flying around outside. Be vigilant and enable biometrics and NEVER enter the PIN in public with Apple. You are asking to be robbed until they fix their dumb security that lets you change the password with only the PIN and then disable tracking and lock someone out of their phone.

But be careful: if your phone has touch screen issues it will type your passcode by accident multiple times and since you enabled this, all your data is going to be erased