Affiliate Disclosure
If you buy through our links, we may get a commission. Read our ethics policy.

Crime blotter: Apple Store crash update and repairman texts adult photos

Apple Store in Hingham, Mass.

In the latest Apple Crime Blotter, a woman sentenced in Capitol riot wiped an iPhone, and AirPods catch teens accused of breaking into Mets' spring training facility.

The latest in an occasional AppleInsider series, looking at the world of Apple-related crime.

Driver's lawyer "astounded" by Apple Store crash murder indictment

In late March, a Massachusetts man was arrested and charged with second-degree murder and 19 other criminal counts, after crashing his car into the Apple Store in Hingham, Mass.

After the charges, the driver's attorney, Joan Fund, declared that she was "astounded" by the murder charge, per the Associated Press, especially since the charges in the previous arraignment were for reckless operation of a motor vehicle and motor vehicle homicide by reckless operation.

In addition to the criminal charges, some victims have sued the man, Apple, and the company that manages the store.

Woman sentenced on January 6 charges reset her iPhone to delete evidence

A Pennsylvania woman has been sentenced to 36 months in prison for her participation in the U.S. Capitol riot on January 6, 2021. The charges she was sentenced on include the felonies of interfering with law enforcement officers during a civil disorder and resisting or impeding law enforcement officers, as well as misdemeanors.

According to the Justice Department press release, the woman not only directed another rioter to take a laptop from the office of then-House Speaker Nancy Pelosi, but reset her iPhone to prevent law enforcement from gaining access to information on it.

Texas woman has nude photos stolen from iPhone by repairman

Police in Texas have arrested an employee of a cell phone repair store after a woman claimed he had stolen nude photos from her iPhone and sent to them to himself.

ABC 13 reports the 26-year-old employee of the Gadget Cure Cell Phone Repair Store in Cleveland, Tex., was supposed to be repairing the woman's phone, but sent about 65 images and five videos to himself. The woman realized what had happened when she got an Apple Watch notification that the messages were sent to an unknown number.

In addition, the woman said the owner of the store — the employee's brother — offered her $500 "if she agreed not to tell."

AirPods help catch teens accused of stealing from Mets spring training facility

Two teenagers have been arrested for carrying out a theft spree at Clover Park in Port St. Lucie, Fla., the spring training home of the New York Mets. According to WPBF, the two teens used a baseball bat to break into the building, and they stole watches, jewelry, and Mets paraphernalia.

They were caught, the news outlet said, when officers traced a pair of stolen AirPods to a home where the suspects were found.

Four iPads stolen from Manchester coffee shop

A popular coffee shop in Manchester, England, suffered a break-in in which four iPads, as well as liquor stock and a charity collection, were taken. Manchester Evening News recounts the theft occurred in late March at The Feel Good Club in Manchester.

The iPads were used as the business' point-of-sale system.

"If anyone tries to flog you an iPad or some expensive bottles of vodka in the next few days," the company said in an Instagram post, "please let us know."

Prosecutors in Chicago suburb pursuing three-year-old case involving stolen AirPods

Prosecutors in the city of Naperville, Ill., are moving forward with a case accusing a then-17-year-old of stealing a pair of AirPods three years ago. According to ProPublica, the prosecution is moving forward even though that jurisdiction is mostly no longer ticketing students in school, and Illinois is considering banning that practice at the state level.

The defendant, at the time a 17-year-old high school student, was ticketed in 2020 for a municipal ordinance violation. The original ticket had only accused the woman of "having" the fellow student's AirPods, not intentionally taking them.

Hong Kong policeman arrested after tracked iPad led to his apartment

A Hong Kong police officer who was part of a team investigating recent burglaries was arrested after a stolen iPad was tracked to his residence. The South China Morning Post reports a woman whose iPad was taken tracked it, leading to the flat of the policeman.

Stolen jewelry was also found by police at the scene.

Woman arrested for stealing Apple Watch, piggy bank

An Arkansas woman was arrested in early March and accused of stealing numerous items from a home, including an Apple Watch and a piggy bank containing $1,500. According to KTLO, the thefts were from a family for whom she had babysat.

The woman returned some of the items, but not the Apple Watch.

Man previously convicted on child pornography charges avoids jail for iCloud hacking

A man from Ireland who was convicted in 2018 of possessing child pornography was facing a separate prosecution from hacking into the iCloud accounts of three different people. However, Sunday World reports he has avoided jail time in the iCloud case.

The man pled guilty to criminal damage of data within iCloud accounts but was given a two-year suspended sentence.

iPhone stolen from delivery to CVS

Thieves were able to steal a package delivered to a Pennsylvania CVS, containing an iPhone, by impersonating the person to whom it was being delivered. The phone was shipped via UPS.

According to TAPInto Doylestown, the thieves were a man and a woman, and the woman claimed to be the recipient.



6 Comments

radarthekat 3904 comments · 12 Years

If only there was a way to track criminals that wouldn’t violate any laws or social norms about privacy.   A method whereby the criminal consciously and deliberately opts in.  It would be so great if we could come up with some way of doing that.  

#FindMy

Marvin 15355 comments · 18 Years

JP234 said:
"Police in Texas have arrested an employee of a cell phone repair store after a woman claimed he had stolen nude photos from her iPhone and sent to them to himself."

So what's your takeaway here? I'll go first: My Bohemian immigrant grandmother had a sign in her kitchen:
"Do nothing you would not want to be doing when Jesus comes."
"Say nothing you would not want to be saying when Jesus comes."
"Go nowhere you would not want to be when Jesus comes."
I'll add my own here: "If you wouldn't want your mother to see it, don't document it." Because in 2023 America, she'll eventually be shown it by someone.

When I worked for an Apple-Certified service center, our techs came upon things like this nearly every day. I was astounded by some of the things people document themselves doing and thinking. And I'm talking criminal behavior, nude photos, sex videos both normal and depraved (and possibly criminal), expressing pro-fascist sentiment, and much, much more. None of it ever left our business, and would have led to immediate termination if it did. Sure required tact and finesse when those customers came to pick up their devices!

It's concerning that this private content is so readily accessible to repair people. Apple has a marketing campaign about private content staying on your iPhone. There should be stronger security for highly personal content like intimate photos and financial details. This only needs to happen to someone once and their photos can be permanently online.

People shouldn't feel like they should stop doing things because they can't trust device security to protect it, that's something Tim Cook has spoken about many times regarding privacy. Apple needs a new feature for iOS and Mac like a biometric vault that can only be opened by that person's biometrics and not a simple passcode and not unlocked by default when accessing the phone.

beowulfschmidt 2361 comments · 12 Years

JP234 said:
Marvin said:
JP234 said:
"Police in Texas have arrested an employee of a cell phone repair store after a woman claimed he had stolen nude photos from her iPhone and sent to them to himself."

So what's your takeaway here? I'll go first: My Bohemian immigrant grandmother had a sign in her kitchen:
"Do nothing you would not want to be doing when Jesus comes."
"Say nothing you would not want to be saying when Jesus comes."
"Go nowhere you would not want to be when Jesus comes."
I'll add my own here: "If you wouldn't want your mother to see it, don't document it." Because in 2023 America, she'll eventually be shown it by someone.

When I worked for an Apple-Certified service center, our techs came upon things like this nearly every day. I was astounded by some of the things people document themselves doing and thinking. And I'm talking criminal behavior, nude photos, sex videos both normal and depraved (and possibly criminal), expressing pro-fascist sentiment, and much, much more. None of it ever left our business, and would have led to immediate termination if it did. Sure required tact and finesse when those customers came to pick up their devices!
It's concerning that this private content is so readily accessible to repair people. Apple has a marketing campaign about private content staying on your iPhone. There should be stronger security for highly personal content like intimate photos and financial details. This only needs to happen to someone once and their photos can be permanently online.

People shouldn't feel like they should stop doing things because they can't trust device security to protect it, that's something Tim Cook has spoken about many times regarding privacy. Apple needs a new feature for iOS and Mac like a biometric vault that can only be opened by that person's biometrics and not a simple passcode and not unlocked by default when accessing the phone.
You missed the boat with this comment. The very reason this private content is accessible is that the service techs can't do anything without admin level access.. You're right that people shouldn't stop doing things because they can't trust device security to protect it. But people SHOULD stop documenting things they don't want strangers (including service techs) to see. That's just stupid and reckless. Your best private info protection is to take it or mail it to Apple for repair, not some strip mall storefront. If you need data recovery, that's another story. For solid state drives, a specialist like DriveSavers is your best choice. They have contracts with government agencies like the FBI & CIA and others, and have procedures in place to prevent data leakage into public forums. But they are not cheap (think low-mid 4 figures, if they succeed). And they need the same access to get that data back.

No, I think you "missed the boat" on this one.  Apple makes a huge deal of its privacy features.  This kind of thing says to me "we care about your privacy, except when you trust us to fix your device."

If any of the techs can have access to all the stuff on my phone just because they have "admin access", then it's not bloody private.  "What's on iPhone stays on iPhone."  Unless you bring it in to be repaired, then they can do whatever they want.

A system that depends on the "tact and finesse" of service techs to keep data private isn't security focused.

Marvin 15355 comments · 18 Years

JP234 said:
JP234 said:
Marvin said:
JP234 said:
"Police in Texas have arrested an employee of a cell phone repair store after a woman claimed he had stolen nude photos from her iPhone and sent to them to himself."

So what's your takeaway here? I'll go first: My Bohemian immigrant grandmother had a sign in her kitchen:
"Do nothing you would not want to be doing when Jesus comes."
"Say nothing you would not want to be saying when Jesus comes."
"Go nowhere you would not want to be when Jesus comes."
I'll add my own here: "If you wouldn't want your mother to see it, don't document it." Because in 2023 America, she'll eventually be shown it by someone.

When I worked for an Apple-Certified service center, our techs came upon things like this nearly every day. I was astounded by some of the things people document themselves doing and thinking. And I'm talking criminal behavior, nude photos, sex videos both normal and depraved (and possibly criminal), expressing pro-fascist sentiment, and much, much more. None of it ever left our business, and would have led to immediate termination if it did. Sure required tact and finesse when those customers came to pick up their devices!
It's concerning that this private content is so readily accessible to repair people. Apple has a marketing campaign about private content staying on your iPhone. There should be stronger security for highly personal content like intimate photos and financial details. This only needs to happen to someone once and their photos can be permanently online.

People shouldn't feel like they should stop doing things because they can't trust device security to protect it, that's something Tim Cook has spoken about many times regarding privacy. Apple needs a new feature for iOS and Mac like a biometric vault that can only be opened by that person's biometrics and not a simple passcode and not unlocked by default when accessing the phone.
You missed the boat with this comment. The very reason this private content is accessible is that the service techs can't do anything without admin level access.. You're right that people shouldn't stop doing things because they can't trust device security to protect it. But people SHOULD stop documenting things they don't want strangers (including service techs) to see. That's just stupid and reckless. Your best private info protection is to take it or mail it to Apple for repair, not some strip mall storefront. If you need data recovery, that's another story. For solid state drives, a specialist like DriveSavers is your best choice. They have contracts with government agencies like the FBI & CIA and others, and have procedures in place to prevent data leakage into public forums. But they are not cheap (think low-mid 4 figures, if they succeed). And they need the same access to get that data back.

No, I think you "missed the boat" on this one.  Apple makes a huge deal of its privacy features.  This kind of thing says to me "we care about your privacy, except when you trust us to fix your device."

If any of the techs can have access to all the stuff on my phone just because they have "admin access", then it's not bloody private.  "What's on iPhone stays on iPhone."  Unless you bring it in to be repaired, then they can do whatever they want.

A system that depends on the "tact and finesse" of service techs to keep data private isn't security focused.
Well then, how do you propose Apple service technicians repair iPhones (or Macs or iPads) without access to them? More than half our service business was data recovery for customers who had never activated their cloud accounts or used Time Machine. Why do you believe it's too intrusive to advise people to exercise a tiny bit of discretion when deciding what to document on their devices?

If there's a separate encrypted vault that you can drag apps into like Photos, banking apps etc, that gets locked behind a specific biometric signature and perhaps optionally a secure passcode, it wouldn't matter if a service tech had admin access to the device and OS, they wouldn't be able to unlock the secure vault.

For data recovery, they'd only be able to recover the encrypted vault and the user would have to unlock it.

Just now, biometrics on Apple devices are treated as convenience features that are secondary to passcodes and people often use basic passcodes. This means they are locking access to their entire life savings, all their personal messages and photos behind passcodes like 0000 without knowing it because they assume that their iPhone is secure behind Face ID or Touch ID.

When they hand their phone over to a service tech, the tech person will ask for their passcode. They think, no problem, at least all the biometric stuff is secure. Nope, the passcode lets the tech person add their own biometrics and it will unlock everything. They can clone the entire phone and hack it later. Apple employees are less likely to do it, premium resellers and other repair shops more likely but none of them should have the option.

People could wipe their device before repair but some people have no backup options so they'd lose some data.

Apple would just have to introduce a new feature in iOS 17: Secure Vault. Open a Vault app or use Settings to create new vaults. Secure the vault using a biometric scan and no other biometrics can open it. Optionally have a backup code to unlock it and codes should have minimum security requirements. Then drag apps into the vault. The vault will automatically close when the phone is put to sleep and will need to be unlocked. It should have a setting that can be enabled that periodically scans the face when using vault apps and lock if someone unfamiliar is using the vault apps and the original owner can allow it for a period of time. When doing backup/restore, it may be difficult to transfer the biometrics from one device to another but the backup can copy the vault contents and encrypt it differently on the backup device.

Another security measure is to prevent changing Apple ID just via device passcode. That option should definitely be locked behind further security.

beowulfschmidt 2361 comments · 12 Years

JP234 said:
"…they'd only be able to recover the encrypted vault and the user would have to unlock it."
You don't know much about data recovery on corrupted storage, do you? It shows.

"I don't have any rational counter to your points, so I'll just call you stupid and hope no one notices."

/s

🤦‍♂️