Aaron Johnson, a convicted thief, is notorious for quickly seizing control of iPhones, locking out users and gaining access to sensitive financial information. He explained his methods one by one.
This is how Johnson breaks iPhone screen locks
Interviewed by Wall Street Journal’s Joanna Stern in prison, Johnson explained how, by exploiting iPhone users, he not only stole the devices but also created the opportunity to steal hundreds of thousands of dollars from the victims.
Johnson’s initial modus operandi was to steal iPhones, clean them, and then resell them. But he soon realized the lucrative potential of taking control of devices without the owners’ knowledge.
His focus then shifted to bars in Minneapolis, where he began observing iPhone users entering their six-digit passcodes. Johnson also employed deceptive tactics.
For example, he approached drunk college students, claimed they had harmful substances in their possession, and then offered to hack their contact information into their phones. After seizing the device, he quickly locked it, either by extorting the password from the owner or by watching them unlock it.
The theft went beyond getting the password; Johnson used deceit and violence to physically obtain stolen phones. Once he gained control, he quickly navigated through Settings and iCloud, resetting the passwords and replacing them with his own. Disabling Find My iPhone further exacerbated the victims’ situation, leaving them unable to access their own devices.
This level of ‘mastery’ that Johnson achieved enabled him to change the Face ID settings so that his own face could unlock stolen iPhones. This allowed him to access sensitive information in banking, securities and other financial applications.
Johnson was now so proficient that he could change Face ID settings within 5 to 10 seconds with the password he obtained from the victims. He admitted to taking over and exploiting victims’ savings accounts, checking accounts, and cryptocurrency applications.
The most important point he touched upon is the ‘Notes’ application. Johnson says the Notes app is a goldmine when it comes to hacking passwords and Social Security numbers.
Within hours of the theft, Johnson was using bank accounts and credit cards to make purchases. After financial abuse, he was factory resetting the iPhone and selling it.
The only lesson we can draw from here is that you need to log in to your phone with Face ID or fingerprint, not directly with the screen lock. Even if these are exceeded, never save your important passwords in an application such as Notes. What are you thinking? Please don’t forget to share your thoughts with us in the comments.