I have over 20,000 photos on my iPhone that I have taken over the past few years. I feel for this man. I hope he gets his memories back :(

Props to the WSJ for shining the spotlight on this, hopefully it forces Apple to add some preventative measures in a software update and to create a process people affected by this can use to prove their identity and get the iCloud account back.

Excellent follow-up, Joanna and the WSJ team!

So basically, Apple's big fail here was the idea of relying on the iPhone's passcode for anything other than unlocking the iPhone itself. Resetting the Apple ID passcode or regenerating a recovery key should require at least two factors of authentication, neither of which is the iPhone's passcode. Also, when using Touch ID/Face ID to unlock apps within the iPhone, it should fallback to the app's log-in credentials if biometric authentication is not successful (instead of prompting to enter the iPhone's passcode).

Apple should require the Apple ID password when: Changing the pin, changing the password. Apple should require both Apple ID password and phone pin if: changing your recovery key. In my opinion though, once you create a recovery key, the only way to remove it or change it should be by providing the existing recovery key. If you forget it, then that's it, you'll never get it back. So it's not a feature for everyone.

Hi, you should also add the “Passcode Changes” to the list from screen time. If they have your passcode, they can also change your passcode. Without it, they can’t change it

Big issue, glad you guys are bringing the spotlight on it, changing my settings now

The suggested fix also introduces other exploitable loopholes unfortunately

This is why I make a backup of ALL my photos and videos on iCloud on January 1st, every year. Everything is duplicated on 3 USB keys, and placed in my home, my parent's home, and a bank safe deposit box. Never log into banks on the phone. Never use payment apps or phone chips to pay anything. There might be a slight convenience for storing everything on the phone, but not worth the potential cost and consequences of losing that phone.

lol why do they let you create a new recovery key without the old one?! They would be on firm footing if they said once you *choose* to create a recovery key it cannot be replaced. But letting people just erase and create a new one is ridiculous!

Your passcode can be a… - 4 digit pin - 6 digit pin for even more security - An alphanumeric pass phrase for even more security. There are even more enhanced security features such as hardware UBI KEY if you want but would you as the average consumer sacrifice the convenience?

You’re a freaking awesome, Joanna! Thank you so much!

That screen time settings can be trivially bypassed by going through the forgotten screen time passcode flow. Eventually, an attacker can get to a password reset screen, and there’s nothing you can do to prevent that. It is absolutely flawed and Apple needs to fix it.

Thanks, Joanna! The Screen Time lock tip has given me peace of mind.

Joanna Stern is amazing. I love everything she does. A few years ago I got to meet other legends in the Technology industry like Nilay Patel, Dieter Bohn, and even the legendary Walt Mossberg. Was hoping Joanna would be at The event (it was the last CNTL WALT DLT podcast episode ) Hopefully I can meet Joanna one day and meet another huge legend.

WSJ, always informative. Thank you for this.

Great video thanks. Apple needs to protect their customers.

Thanks so much for sharing on how to change the settings to prevent the takeover of iPhones! Much appreciated and I’ll definitely share this video.

Thanks or a great follow-up vido! The front-door analyogy really worked for me

This video is so helpful!! Thanks.

SUPER HELPFUL! THANK YOUUU SO MUCH.. 10/10 as always Ms. Joanna

Thank you for making part 2❤

Quite informative content. Better to be prepared before it actually happens.

Very important news. Thank u

Great reporting

Awesome video thanks for raising awareness 4:13

I dunno. Feels like these issues aren’t so much Apple or general tech “loopholes.”We can’t sit back and rely on a device to protect our devices and memories; we have to be smart and proactive and protect them ourselves, too.

It also depends on where you are as well. You have to be aware of your surroundings. Having a privacy screen protector so others can’t see what your doing on your phone as well as making sure you are in a safe environment before doing something on your phone. I know that we all like to think everyplace is ok but it isn’t

I’ve seen a comment on a previous KZbin video on how to make it harder for thieves to do this. You have to set a screen time passcode and then from there turn on the setting to prevent account changes so they can’t get into your iCloud account on your iPhone. You’ll also have to turn off of your email being accessed on the phone as well, because if you don’t and your email address on your phone is linked to your Apple ID they can just reset your Apple ID password. If they have the technical knowledge

Thanks 👍🏻 👏🏻

Thank you

There are 4 different ways to control access and of course requiring a combination of them is the best. The 4 ways, of which only 3 of them are generally in use are 1) Something you know like your pin or password; 2) Something you have like a Yubkey; 3) Something you are like a retina scan or fingerprint or; 4) Something you can perform like playing a short musical number or juggling or whatever. I really think #4 should be used more as for example people have a typing cadence that is fairly unique and hard to duplicate. Obviously this can change in different situations but there could be simple ways like having a pattern you wave the phone (triangle, square, figure eight with a certain cadence) in as a way to enter the passcode which could be used.

I have a physical security key linked to my Apple ID. This would circumvent that. The whole point is for it to be the most secure option, incredibly frustrating you can bypass all this security with a 6 digit number. I wish I could disable changing apple ID passwords with your phone.

The big issue here is really the ability to make such significant changes to your security without any stronger safeguards than the PIN. My 5 year old is able to remember PINs just after 2 demonstrations - its really not that hard finding someone's PIN. I can understand why Apple did this... but for people who live in the Apple ecosystem this is really quite worrying. Luckly for the android users, Google OS is just not polished enough for this to be a problem.

4:12 shows how to prevent this. Great tip!

@4:17 Very nice security workaround

Thank you for sharing the tip about the screen time passcode I would have never discovered that. But it is fairly effective once set. Apple need to do more to stop this issue

So basically, a thief can only do this if they actually have ur first passcode and are able to use the phone

Apple truly can't do anything once you add a recovery key. It's not that they don't want to or don't believe him; it's that his data is encrypted and locked, and not even Apple can unencrypt it to change the password without the recovery key.

The screentime passcode can also be bypassed easily if I remember correctly I saw one of the comments in your last video mentioning that.

WSJ is my fav media from the US.

Wait!! Can we use screen time to limit any sensitive apps too!!?

Excellent job. Hope Apple will find solutions for this

correct me if im wrong, but I seem to recall anything with the updating of user recovery key profile portion requiring AppleID password(not the passcode)?

Would you have to put a lock on find my phone as well then ? Like screen time ?

4:15 THANK YOU 🙏🙏🙏🙏

It's situation they had in Lost in Space, when overseer Hastings took over control of doors and tried to override permissions and vent the airlocks.

Retina scan... is that where you sit on the photocopier?

This just happened to me and I lost over 20,000 photos 2,000 videos. The last pictures of my dog before he passed away, the last voice messages from my grandparents before they passed, all my photos from my travels around the world just gone. Apple was able to verify that I was who I said I was on the phone but would not revert my Apple ID back to the original email and allow me to change the password. It's heartbreaking. I'm at such a loss.

Great video! Most consumers will never do it because they have no clue how to manage files or backups..... but a local backup is the only real solution for these types of scenarios. You can't rely on Apple as your only source for photos + videos. Reply

I found a major bypass with this security tip of using different pin to block settings changes. The bypass is the Apple support app which lets you change passwords etc without having to enable changes (thereby entering new unique pin)

Also u can connect a cable and brute force generated pin in few hours

THANK YOU SO MUCH!!! Holy cow this world is getting crazy!! I left Samsung for Apple because of its security measures that it has which devices I really hope Apple fixes this, but thank you so much for this video I took the steps to safeguard my iPhone!! thank you again

Apple should do something about this as soon as possible!

That beautiful little angel. This is one of the worst . Please deal with them in a similar matter .

Good job keep educating the new thieves and give the old thieves a heads up lol...

There are still breadcrumbs leading to the recovery key even if some of you do what is suggested to keep it safe as some of the comments have already pointed out. Unfortunately current and new thieves are also watching this video to see how they can improve on their thieving skills. I see this video as more of a wake up call for some to focus on extra security protection barriers within your phone as well as within the apps used on the phone making it difficult to steal information which is more valuable to thieves than the phone itself.. Remember, even backups need backups….

Need Joannas take on the sideloading app feature coming to iOS 17 in the coming months. What is Apple doing to keep its ecosystem secure?

I used to work at an Apple authorized Geek Squad and I probably had around 200 customers in the two years who unfortunately were locked out by because of the record key. The only other way was if they had a physical sim we could move to another phone and get the sms message code. 2/10 customers were frustrated, dissatisfied and confused at Apple.

How do.i access my Apple ID settings after turning on the screen time thing?

Build a NAS or use a usb stick for backup

There’s also recovery phone contact and that can be removed so it feels like they can get into everything let’s say you lock your notes app and have recovery key in it not only they can change recovery key but can you’d phone passcode to get into that note to remove everything

Just a heads up there is a way around the screen time… I’m not going to say it for obvious reasons… However it should slow them down (assuming they do not know the way around screen time).

This is an issue of education. And I have seen MANY posting on the solution (including myself) on the prior installments of this WSJ series. NONE of this would be an issue if people properly used Touch / Face ID. BUT they have to be educated on both USING it AND setting it up! And I know there will be those that say "Touch / Face ID does not work, I have to keep entering my passcode, etc. etc." Again... Non-issue. Set it up correctly and you will not have issues. It's all about doing it correctly. For touch ID, use multiple fingers the way iOS guides you through it. For Face ID, hold phone ahead of you and slowly rotate your head while looking at the phone. Save multiple "looks" with / without glasses, hats, hairstyles, etc. I can't tell you how many clients I've had to convince to USE touch/face ID and have had to dispel people's fears about using biometrics. These are complex devices that have access to our lives. Lots to educate people on, BUT ABOVE ALL, USE BIOMETRICS!!!!!!!!!!

I’ve now taken the extra precaution of protecting my iphone and ipad. One thing that a user could do, and admittedly it would involve some work, is to backup all your photos and other important documents to an external HD or SSD and then delete those things from your Apple devices. You can keep essential ones on your devices but as long as they are backups externally, and not on your devices or in an icloud account, they should be protected. You could also store your photos on a non-Apple cloud service that you can access via the web and not an app. That way, if your phone gets stolen, a thief won’t know if you have another cloud service if you don’t have an app downloaded for it.

So enable FaceID, don’t use your passcode in public so the thieves can’t walk into your house and change the locks

These loopholes need urgent action. How about considering the "Picture Password" as additional/optional security feature BlackBerry had before? 6-digit code is not secure enough.

every part of the iphone NEEDS to be locked behind face id AND a password. you should need both instead of one or another

They provide you with an option to use physical security keys

Have they added additional features so this can't happen to anyone else?

should i provide my apple id on the screen time passcode?

Crazy. I can’t use the recovery Security Key feature because my business has many devices, computers, phones, iPads, that can not all be upgraded to iOS 16 and OS Ventura (because I have expensive work software comparability issues). If you use the Security Key on one device, apple states that you will no longer be able to log into the older devices. That seems too broad and a security risk. There should be more granular security settings per device.

What about siphoning it from the server side. Usually the servers lack DNSSEC security. You would need the ip address of your cloud ☁️ account for Apple photos. And some tools similar to Kali Linix

Deberian investigar a quien oertenece la cuenta de vivo en marte, seria muy agradable que apareciera en las noticias...

Android phones can lock APP, including setting and Google Play Stores, which provides an additional layer of security.

Not aware if anyone mentioned, but for the potential solution; you can change the screen time pin with the apple id which would render that method useless.

Adding on fingerprints verification would be helpful

leaving your digital property on the hands of third party is the price to pay here. there's a reason why some companies still insist on offline backup.

I tried the screen time trick mentioned in this video, but it only grays out the setting making it unable to be pressed no prompt to put in the password when pressing on the setting in settings , i can however Lock Screen time with a password so making changes to things in screen time requires a password. At this point I don’t think I will be using the screen time trick unless someone else knows how to make it prompt you to put in your password for iCloud setting , just like it is shown in this video.

I do not use mail, banking apps on my phone. I only wire via a bank scanner and security sms from the bank. (never let the laptop save usernames), and only use cash or bankcard while outside shopping etc. It's the accounting way. I do admit if banking app's are safe enough i would love to use them. For the moment it is still a no go for me personally. Great video. Thank you from The Netherlands.

Great story and Apple's army of lawyers will, of course, never admit any fault. Could you do a counterpoint story about how all this works on Android phones? 🙏

I appreciate the heads up on this issue, and I agree that Apple can probably do more to prevent this problem. But - as I understand it - I think the iCloud account's encryption makes it literally impossible for Apple to access the user's data without the local encryption key, effectively now in the control of the thieve. On this part Apple should NOT make a change - I love their security even if it can bite someone bad on rare occasions.

One of the worst feelings is getting your phone stolen. It’s like an intruder/stranger has violated your privacy

So basically the underlying flaw is with traditional pins and passwords. It's slightly concerning to have account data protected by just the passcode to the device.

Good Job, Apple. Keep it up~~

Scary.

I think I’m one of the few that blocks access to my Apple ID account with a demand for passcode for any account changes. It’s very rare that I temporarily have to remove this lock myself to be able to access the Apple ID account settings. If the thieves can’t turn of the “find my iPhone” they rarely can reset and sell them. 1. This is set under screen time - content / privacy restrictions - account changes, and of course that is a a unique code, not the same as used for unlocking the phone. 2. You can also set passcode to “always required”. This will block 99% of the thieves, but 1% of them just sell the phone to specific countries where IMEI-lock and all the other protections is removed very easily. It’s a myth that IMEI-lock works globally.

One thing that apple should include when changing the iCloud password is for users to type in the old password before making a new password. This won’t allow thieves to be able to change your iCloud password cuz they won’t know your old password. Also ensuring that it’s the owner of the phone itself that’s changing the password and not any one else.

Loophole? More like negligence on the owner’s part.

It’s a bit misleading, how did the thief of the phone of the guy who went to Chicago got his PIN number? If he got that one, why he wouldn’t be able to get the new screen time one u guys suggest?

This screen time setting won’t work if you have the apple support app installed on your device. You can change the Apple ID password through the apple support app.

The problem with her "screen time passcode" solution is that now if the thief knows your iPhone passcode, they can go to change screen time passcode, choose 'Forgot passcode' which will require you to login Apple ID, choose forget password, input the Apple ID (which can be found relatively easy if you have access to the phone already), choose to verify using iPhone's passcode (which they obviously have) and voila, you can turn off the screen time passcode and continue the steps in this video.

When out in public, only unlock with you thumbprint or faceID, never using your code. That way won't be able to change any settings with out that code.

Even hardware key is not useful to prevent an unwanted change to the passcode. Having set a hardware key should make compulsory its possession to change iCloud password, but at the moment it isn’t.

So don't lose your phone and the passcode at the same time.

Imagine being held at gunpoint and having to decide between losing your entire digital life or your actual one. This is the nail in the coffin for iCloud for me, which was already perilous enough from a data integrity perspective.

Did he ever get back his information? Is there a follow-up since this was aired?

Also ordered other stuff like computer watch

The Screen Time PIN doesn't work. 1. ⁠Set Screen Time PIN. When it asks for your Apple ID, hit cancel 2. ⁠Try to Change Screen Time PIN 3. ⁠Say you forgot it 4. ⁠Phone will offer to let you reset with your Apple ID 5. ⁠Say you forgot it 6. ⁠Phone will offer to reset your Apple ID password with your device lock passcode

Can Apple improve on this? Of course! Can the average iPhone user be more proactive in protecting themselves? Absolutely! If you have to enter your passcode for ANY reason, make sure 100% that you are trying your best to cover and hide your hand. The first defense in protection from thieves is yourself!