ElcomSoft's Latest Tool Can Allegedly Access iMessages in iCloud, But Only in Extreme Circumstances

Russian company ElcomSoft today claimed that the latest version of its Phone Breaker software can remotely access iMessage conversation histories stored in iCloud, although there are several strings attached.

imessage logo
Namely, the person attempting to extract iMessages from an iCloud account would need the following before being able to do so:

  • Elcomsoft Phone Breaker version 8.3

  • The associated Apple ID email and password for the iCloud account

  • The passcode, if an iPhone, iPad, or iPod touch, or system password, if a Mac, of at least one device on the account enrolled in Messages in iCloud, which requires iOS 11.4 and macOS 10.13.5 or later

  • Access to a two-factor authentication method, such as a trusted secondary device, which may or may not have the same passcode or system password, or a SIM card for a phone number that has been authorized to receive one-time verification codes via SMS

It's worth noting that if the perpetrator has obtained physical access to at least one of your trusted secondary devices, and its passcode, they would be able to read at least part of your iMessage history regardless by simply opening the Messages app.

Apple obviously cares very deeply about the security of its customers, but if a bad actor has gained access to another person's Apple ID credentials, your passcode, and at least one of your Apple devices, or your SIM card, there arguably isn't really much the company can do at that point to protect you.

That's why it's so important, as Apple routinely stresses, to set a strong password for your Apple ID, not share that password with others, enable two-factor authentication, and keep careful possession of your devices. It also helps to set a strong alphanumeric passcode on an iOS device, rather than a four-digit one.

Apple says iMessages are protected with end-to-end encryption, and notes that messages can't be accessed by anyone without your device passcode. As an additional safeguard, Apple requires that users have two-factor authentication turned on for their Apple ID accounts to enable Messages in iCloud.

imessage encryption
ElcomSoft's tool seems to be taking advantage of the fact that, if iCloud Backups are turned on, a copy of the encryption key protecting iMessages is included in the backup, according to a support document on Apple's website:

If you have iCloud Backup turned on, a copy of the key protecting your Messages is included in your backup. This ensures you can recover your Messages if you’ve lost access to iCloud Keychain and your trusted devices. When you turn off iCloud Backup, a new key is generated on your device to protect future messages and it is not stored by Apple.

Given the extenuating circumstances required, the vast majority of users shouldn't have anything to worry about. But it's a good reminder to maintain strong security practices on all of your devices to stay safe.

Top Rated Comments

Chabba Avatar
71 months ago
So they can access your data if they have access to your data...? Sounds like that to me.
Score: 46 Votes (Like | Disagree)
Christoffee Avatar
71 months ago
I'm not sure Elcomsoft Phone Breaker version 8.3 is required. o_O
Score: 39 Votes (Like | Disagree)
IJ Reilly Avatar
71 months ago
And our complete non-story of the day is...
Score: 26 Votes (Like | Disagree)
slimtastic Avatar
71 months ago
BREAKING NEWS: If someone gets your Apple ID, Password, Passcode, AND PHYSICAL ACCESS TO YOUR DEVICE, they may be able to get your info! You HAVE BEEN WARNED.

Lmao
Score: 23 Votes (Like | Disagree)
zorinlynx Avatar
71 months ago
HEY YOU KNOW WHAT I found a security hole in my bank's ATMs, if someone has my card and PIN they can take out my cash!!! HOLY CRAP WHAT WILL WE DO NOW!??!
Score: 21 Votes (Like | Disagree)
ViDeOmAnCiNi Avatar
71 months ago
I've totally figured out how to access *anyone's* home! You'll need:

Their permission
Door key(s)
Alarm code(s)
Familiarity with their killer wiener dog, Bunz
Friendships with their neighbors as to not arouse suspicion

..and you are *totally* in!

Enjoy!
Score: 19 Votes (Like | Disagree)

Popular Stories

iOS 17

26 New Things Your iPhone Can Do With Next Month's iOS 17.2 Update

Wednesday November 22, 2023 10:57 pm PST by
Apple made the first beta of iOS 17.2 available to developers in October. Since then we've seen two more betas, and with each iteration Apple continues to add more new features and changes, many of which users have been anticipating for quite a while. Below, we've listed 26 new things that are coming to your iPhone when the finalized version is publicly released in December. 1. Help You...
Apple Watch Series 9

5 Reasons to Wait for Next Year's Apple Watch

Friday November 24, 2023 3:46 am PST by
With all the discounted deals on Apple tech currently available, you might be thinking about upgrading your Apple Watch or buying one for the first time. But if your current smartwatch is doing its job just fine and it's only the idea of a good deal that's piqued your interest, it could be worth holding out until next year when Apple unveils its latest and greatest version. There are already ...
General Black Friday Deals 2022 Green

40+ Apple Black Friday Deals Still Available for AirPods, iPhone, iPad and More

Friday November 24, 2023 5:01 am PST by
Black Friday 2023 has officially ended, but we're still tracking some of the best deals of the year on Apple products like AirPods, iPad, iPhone, MacBook, and many more. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. Specifically, in this article we're...
Cyber Monday Deals Feature 2022

40+ Apple Cyber Week Deals for AirPods, iPad, Apple Watch, and More

Sunday November 26, 2023 9:47 am PST by
Cyber Week has taken the place of Black Friday, and you'll find some of the same deals still around for the next few days, although many from Black Friday have now expired. This includes dozens of record low prices on Apple products like AirPods, iPad, Apple Watch, MacBook, iPhone, and more. Note: MacRumors is an affiliate partner with some of these vendors. When you click a link and make a...
ipad mini 2021 youtube

What to Expect From the Next iPad Mini Later in 2024

Friday November 24, 2023 1:00 pm PST by
Over 800 days have passed since Apple last updated the iPad mini, as outlined in the MacRumors Buyer's Guide. Fortunately, a new iPad mini is rumored to be released next year, and we have outlined what to expect from the device below. Apple released the current iPad mini in September 2021, with new features at the time including a larger 8.3-inch display, a USB-C port, a Touch ID power...