{"id":12648,"date":"2014-02-25T13:35:27","date_gmt":"2014-02-25T19:35:27","guid":{"rendered":"http:\/\/bucktownbell.com\/?p=12648"},"modified":"2014-02-25T13:35:27","modified_gmt":"2014-02-25T19:35:27","slug":"background-monitoring-on-non-jailbroken-ios-7-devices","status":"publish","type":"post","link":"http:\/\/bucktownbell.com\/?p=12648","title":{"rendered":"Background Monitoring on Non-Jailbroken iOS 7 Devices"},"content":{"rendered":"<blockquote><p>We have created a proof-of-concept &#8220;monitoring&#8221; app on non-jailbroken iOS 7.0.x devices. This \u201cmonitoring\u201d app can record all the user touch\/press events in the background, including, touches on the screen, home button press, volume button press and TouchID press, and then this app can send all user events to any remote server, as shown in Fig.1. Potential attackers can use such information to reconstruct every character the victim inputs.<\/p><\/blockquote>\n<p>via <a href=\"http:\/\/www.fireeye.com\/blog\/technical\/2014\/02\/background-monitoring-on-non-jailbroken-ios-7-devices-and-a-mitigation.html\">Background Monitoring on Non-Jailbroken iOS 7 Devices \u2014 and a Mitigation | FireEye Blog<\/a>.<\/p>\n<blockquote><p>Before Apple fixes this issue, the only way for iOS users to avoid this security risk is to use the iOS task manager to stop the apps from running in the background to prevent potential background monitoring.<\/p><\/blockquote>\n<p>Yikes!\u00a0 This might be a problem for android devices as well.\u00a0 I have noticed that since a device stays on 24\/7 resident apps can build up in the background because even though you think you closed an app it sometimes doesn&#8217;t actually close as in terminate until its icon is touched to activate.\u00a0 The proof of concept above got this &#8220;keylogger&#8221; through Apple&#8217;s App Store which is pretty remarkable.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>We have created a proof-of-concept &#8220;monitoring&#8221; app on non-jailbroken iOS 7.0.x devices. This \u201cmonitoring\u201d app can record all the user touch\/press events in the background, including, touches on the screen, home button press, volume button press and TouchID press, and &hellip; <a href=\"http:\/\/bucktownbell.com\/?p=12648\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[17],"tags":[1125,547,322,698],"class_list":["post-12648","post","type-post","status-publish","format-standard","hentry","category-technical","tag-exploit-vector","tag-iphone","tag-keylogger","tag-security-research"],"_links":{"self":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/12648","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=12648"}],"version-history":[{"count":1,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/12648\/revisions"}],"predecessor-version":[{"id":12649,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/12648\/revisions\/12649"}],"wp:attachment":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=12648"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=12648"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=12648"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}