I am using Face ID with apps that don't have the option built-in, like the Mail app, Settings app, Wallet app etc. If someone gets my phone while it is unlocked, said person won't have access to my apps to get private information.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Stolen iPhone - Criminals have full control and Apple cannot help!
- Thread starter danclara
- Start date
- Sort by reaction score
As I previously noted, if Face ID fails with a stock app, the user is prompted for the passcode. If the person holding the phone doesn't know the passcode, my personal information on the phone is still safe.
edited to add: My phone is a lot more secure than people who haven't locked up the stock apps etc.
Well we are specifically talking about a situation where the thief knows the device passcode, so Face ID would not help in this situation.
It falls back on prompt for passcode but you can decide not to proceed and exit the app, then try again to see if FaceID works on 2nd or 3rd attempt. If not, just head for a quiet place (restroom if need be) and set up face ID again.
If you’re forced to type your passcode while at the pay terminal, just find a way to obscure the entire phone such as inside your coat and type the passcode
Last edited:
Folks we can talk about this for 10 or 100 more pages (and we should until the whole world becomes aware) but Apple isn’t likely to go and change this. It’s not in their interest. The convenience of 99.9999% of users outweighs the dismay of the few unlucky ones.
It’s good to see noted that screen time is not going to help and same goes for ubikeys, recovery key and 2FA on a separate users device.
Really all that you need to do is be aware and hide your screen as you type the passcode. That’s is all.
It’s good to see noted that screen time is not going to help and same goes for ubikeys, recovery key and 2FA on a separate users device.
Really all that you need to do is be aware and hide your screen as you type the passcode. That’s is all.
I was under the impression that this was a “still own my iPhone” scenario. If not, then my bad, I apologise
That's not how passkeys work, or look like they are going to work. They are secured by your existing device security.
This is why is it incredibly important to be vigilant and ensure no one learns what your device passcode is.
These are the steps to logging into an account using a passkey as per Google instructions:
- Go to the application.
- Click Sign in.
- Select their passkey.
- Use the device screen unlock to complete the login
Passwordless login with passkeys | Authentication | Google for Developers
developers.google.com
Yes or have to verify any emergency registered contacts name and phone numbers. They could also do security questions which the thieves obviously would not know and also have a 3-day wait period for any failed authentication. The master device passcode method is good too. The regular passcode would be different from the master device passcode.
I’m positive Apple will look into all of these feedbacks and will implement change, hopefully 🤞 at the WWDC with iOS 17
I mean, it could be an option (to have an un-overriddeable security factor). But I think people will still complain because one method will be defaulted and some people will be screwed over by the default.
For all of you who think that the only thing to do is to be more vigilant, that's easy to say when you haven't been a victim of theft. We all make mistakes. Once I unintentionally left my car unlocked and someone opened the door and took a gift card that was in the console. My fault but stuff happens. Now I have a different car that (optionally) automatically locks the doors if I forget. That's a good thing and mostly solves the issue that I had with the old car.
Apple should offer the option to lock it down more securely. Then it can be up to the user whether or not to use that option.
Apple should offer the option to lock it down more securely. Then it can be up to the user whether or not to use that option.
Apple's new Lockdown mode is not much of a lockdown mode, in my opinion. And if Apple were truly focused on device and account security in said mode, the feature would require a separate (from the main passcode) alphanumeric PIN code to enable / disable.
As I said a few posts ago I have not seen anywhere why (a different) screen time password is not going to help, especially if the option to recover with Apple ID is not enabled....can you point me at the relevant posts or give details? Thanks
Last edited:
Yeah, overall reading this thread. The thief knew your passcode and it is something to fall back on if the face Id did not work.
Pretty much like someone know your bank card pin number, took your bank card and empty it out.
T
Isn’t that changing the phone passcode not iCloud ? How does one change iCloud password with just iPhone passcode ? Sorry 😞
Click settings.
Click the Apple ID pic at the top.
Click Password & Security
Click Change Password
Enter passcode (the phone pin)
enter new password twice
As for the banking apps, I'm just taking the OP's word. I'm not going through any reset options for my banking apps in case I get locked out
Isn’t that changing the phone passcode not iCloud ? How does one change iCloud password with just iPhone passcode ? Sorry 😞
The folks concerned about being targeted by governments are not letting their phones out of their possession (they know the PIN is ONLY effective if a malicious actor ALSO has the physical device). Because, for state actors with their money and resources, if they obtain physical access, all security goes out the window. Lockdown is for those that will NEVER be without their device but needs protection against the most effective remote attacks.
I get that but, lockdown mode still looks very weak to me. Apple needs to ramp up safety for the average user as well.
I‘ve gotten a notification of a security response download today - is this to help with this issue in some way?
No.
As in the post you quoted. You can test it yourself, and when you get the prompt to enter a new Apple ID password, just click cancel so that you don't actually change it (unless you want to change it!).
Me, I am all for a more secure setup. And I really feel for the victims, please don’t think I don’t care because I do. I am just trying to be realistic regarding what we can expect from Apple. I hate how Apple prioritises mass convenience over individual loss. I could consider to abandon Apple over this but I’m too heavily invested in their stuff and I can personally work around the issue.
I would absolutely welcome such options.
I take it you haven't interacted much with online forums. Every so often, there are people who post things that are untrue. And expend a great deal of time and effort doing so. Why would anyone do that? Who knows -- there are a lot of troubled people in the world. But "troll" posts happen often enough that people who spend lots of time on forums learn to be skeptical. Sorry you have to deal with the skepticism in addition to your problems with the theft of your phone and accounts. Hopefully, your measured and reasonable responses will help mitigate the skepticism.
Hopefully Apple will release an update to prevent this situation in the near future.
More likely to ignore it & rely on the supercycle that comes with the 'new improved' security that comes on iPhone 16 with both fingerprint on the power button aswell as Face ID.
Apple really needs to get on this stat. There have been way too many cases.
Instead of failed RSRs, maybe they can focus on something that actually matters.
The iPhone Passcode holds way too much weight
Instead of failed RSRs, maybe they can focus on something that actually matters.
The iPhone Passcode holds way too much weight