When Wireless Malware Stays on After Turning Off the Phone

Explore the security implications of wireless chips remaining active in modern iPhones after power-off. Delve into the implementation of Find My advertisements and Digital Car Key 3.0 express mode, which operate even during low-power shutdown. Examine the hardware design of iPhone 11 and later models, and investigate the Bluetooth firmware in iPhone 12 and 13. Learn about modifying Bluetooth firmware and the InternalBlue framework for analysis, debugging, and potential malware installation. Discover techniques for matching important handlers in the latest firmware and understand the capabilities that could be exploited by malicious actors. Gain insights into the risks faced by high-value targets who can no longer trust their iPhones to be completely switched off.

Recon 2022 - When Wireless Malware Stays on after Turning off the phone