iOS 8 is vulnerable to a new type of extremely ingenious attack that can remove the security code of our terminals to give a hacker access to all the data in the devices, but in the middle is an extremely complex procedure that can require up to several days of the exploitation of the temrinals. In the image above you have a device created by a security company called MDSec, it being able to discover through a brute force attack the PIN code of iDevices running any version of iOS older than iOS 8.1, incl.
Although normally after the introduction wrong PIN code 4 times iOS would block access to the terminal, this device checks the brightness level of the screen after each attempt to enter a PIN code, cutting off the power supply to the logic board to prevent the wrong input from synchronizing with the memory flash. Practically, this device tries every possible combination of PINs for a terminal until it finds the correct one, each time interrupting the power supply of the terminal in order not to allow iOS to block its access.
The IP Box is able to bypass this restriction by connecting directly to the iPhone's power source and aggressively cutting the power after each failed PIN attempt, but before the attempt has been synchronized to flash memory.
In practice, breaking a terminal can take up to 111 hours, so a hacker would have to steal the device to gain access to it and that terminal must not have an iOS version installed newer than iOS 8.1. Starting with iOS 8.1.1 the vulnerability has been resolved, but the security company's idea and implementation method proves that an inventive hacker can break into an iDevice.
