MKBHD's Locked iPhone Hacked: $10,000 Fraud Exposes Physical Security Flaw

Cyber News - Erez Dasa reports on a significant incident where tech influencer MKBHD’s locked iPhone was compromised, leading to a $10,000 fraudulent charge. This wasn’t a remote exploit; the attack vector was physical access combined with social engineering or observation. The attacker gained control of the device while it was locked, enabling them to bypass crucial security measures.

The core issue here is not a zero-day in iOS itself, but rather the real-world implications of physical device compromise. Once an attacker has your unlocked phone—or in this case, a locked phone they can manipulate—they can leverage access to stored payment methods, password managers, and potentially reset critical accounts. Cyber News - Erez Dasa emphasizes that the attacker likely observed the victim’s passcode, which is often the weakest link in an otherwise secure device.

This incident is a stark reminder that even with advanced digital security, physical access remains a critical threat. Defenders must assume that if a device is physically compromised, even if locked, its contents are at risk. The attacker’s calculus is simple: bypass the initial lock, then exploit the trust relationships the device has with financial services and other accounts.