Jump to content

Grayshift

From Wikipedia, the free encyclopedia
Grayshift
IndustryMobile device forensics
Founded2016
FounderDavid Miles
Braden Thomas
Justin Fisher
Sean Larsson
FateMerged with Magnet Forensics (2023)
Websitemagnetforensics.com

Grayshift is an American mobile device forensics company which makes a device named GrayKey to crack iPhones, iPads, and Android devices. In 2023, it merged with the Canadian firm Magnet Forensics.[1][2]

History

[edit]

Grayshift was co-founded by David Miles, Braden Thomas, Justin Fisher, and Sean Larsson.[3] The company is[when?] funded by private investors PeakEquity Partners and C&B Capital.[4][5] As of 2023, it was majority controlled by investment firm Thoma Bravo.[2]

Grayshift was founded in 2016, and as of 2018 was a privately held company based in Atlanta, Georgia, with fewer than 50 employees.[6]

In 2023, it was announced that Grayshift would merge with the Canadian firm Magnet Forensics, following the latter's acquisition for $1.35 billion by investment firm Thoma Bravo, which also owned the majority of Grayshift at the time.[2] The merger was completed later the same year.[1]

GrayKey

[edit]

In 2017, rumors started to circulate that Grayshift had created a device able to unlock iPhones, following the Apple–FBI encryption dispute where US law enforcement agencies unsuccessfully tried to compel Apple to write software that would enable the government bypass these devices' security and unlock the phones.[6]

The GrayKey product has been used by the FBI and U.S., British and Canadian local police forces.[7][8][9][10][11][12] In 2022, the company stated that GrayKey was being used "by thousands of law enforcement and government defense agencies across 30 countries worldwide, including France, United Kingdom, Germany, Sweden, Spain, and Italy".[13]

According to media reports, GrayKey costs US$15,000 to US$30,000 per copy depending on the functional options chosen.[14] As of 2018, the device consisted of a gray box, 4 inches by 4 inches by 2 inches in size, with two Lightning cables.[6] In 2022, photos of the "GrayKey 2.0" device were revealed in an FCC filing.[15]

The GrayKey reportedly provides[when?] support retrieving information from iPhones running iOS 9 and later.[16] Around 2019, Apple modified iOS so that external device connections must be authorized by the iPhone owner after it has been unlocked.[17] On newer iPhone models, only unencrypted files and some metadata might be extracted.[18] With earlier models, full data extraction, such as decrypting encrypted files, is possible.[19][20] As of 2021, GrayKey was able to perform successful brute-force attack against iOS devices in some situations, with Grayshift being "constantly in a cat-and-mouse game with Apple", which continually works to fix the security exploits used by GrayKey.[21] In 2022, Motherboard concluded that "while it’s unclear exactly how it achieves it, GrayKey bruteforces the iPhone or Android phone’s passcode and unlocks it—essentially hacking the phone—allowing customers to access and extract data from the phones."[15]

In 2018, hackers obtained the GrayKey source code, and attempted to extort a payment of 2 bitcoins from Grayshift after leaking "small chunks of code".[22][23]

GrayKey with Android support was released in early 2021.[24] According to a March 2024 announcement, Graykey has "full support" for iOS 17 devices, Samsung's Galaxy S24 smartphones, and Google's Pixel 6 and Pixel 7 devices.[3]

References

[edit]
  1. ^ a b Bureau, Brigitte (2023-11-29). "Tools capable of extracting personal data from phones being used by 13 federal departments, documents show". CBC News. Archived from the original on 2024-04-11. Retrieved 2024-11-19. {{cite news}}: |last= has generic name (help)
  2. ^ a b c "Magnet Forensics to Merge With Grayshift After $1.35B Buyout". GovTech. 2023-01-23. Retrieved 2024-07-17.
  3. ^ a b "Leadership". Retrieved 2021-01-04.
  4. ^ "Investors and Advisors". Retrieved 2021-01-04.
  5. ^ "Grayshift, The Startup That Breaks Into iPhones For The Feds, Raises $47 Million". Forbes. 2020-10-26. Retrieved 2021-01-04.
  6. ^ a b c Reed, Thomas (2018-03-14). "GrayKey iPhone unlocker poses serious security concerns | Malwarebytes Labs". Malwarebytes. Retrieved 2024-07-17.
  7. ^ Miller, Chance (2020-01-16). "Report: The FBI recently unlocked an iPhone 11 Pro with GrayKey, raising more doubts about the Pensacola case". 9to5Mac. Retrieved 2020-01-16.
  8. ^ Fox-Brewster, Thomas (March 5, 2018). "Mysterious $15,000 'GrayKey' Promises To Unlock iPhone X For The Feds". Forbes. Retrieved 2020-01-16.
  9. ^ Burgess, Matt (2018-10-19). "UK police are buying top secret hacking tech to break into iPhones". Wired UK. ISSN 1357-0978. Retrieved 2020-01-16.
  10. ^ Cox, Joseph (2018-04-12). "Cops Around the Country Can Now Unlock iPhones, Records Show". Vice.com. Retrieved 2020-01-16.
  11. ^ "Waterloo Regional Police have a device that can crack locked phones". 2021-01-03. Retrieved 2021-01-04.
  12. ^ "More questions than answers as Guelph Police confirm ownership of controversial forensic tool". 2020-12-02. Retrieved 2021-01-04.
  13. ^ Grayshift. "Grayshift Announces Office in France and Continues to Invest in European Growth". www.prnewswire.com (Press release). Retrieved 2022-07-12.
  14. ^ Brewster, Thomas (2018-03-05). "Mysterious $15,000 'GrayKey' Promises To Unlock iPhone X For The Feds". Forbes. Archived from the original on 2024-03-26. Retrieved 2024-11-19.
  15. ^ a b Franceschi-Bicchierai, Lorenzo (2022-09-30). "This Is the 'GrayKey 2.0,' the Tool Cops Use to Hack Phones". Vice. Retrieved 2024-07-17.
  16. ^ "FBI got data from a locked iPhone 11 using GrayKey: how does this tool work?". 22 January 2020. Retrieved 2021-01-04.
  17. ^ "USB Restricted Mode in iOS 13: Apple vs. GrayKey, Round Two". ElcomSoft blog. 2019-09-27. Retrieved 2024-07-17.
  18. ^ Brewster, Thomas (2018-10-24). "Apple Just Killed The 'GrayKey' iPhone Passcode Hack". Forbes. Archived from the original on 2023-02-10. Retrieved 2024-11-19.
  19. ^ Fukami, Aya; Stoykova, Radina; Geradts, Zeno (2021-09-01). "A new model for forensic data extraction from encrypted mobile devices" (PDF). Forensic Science International: Digital Investigation. 38: 301169. doi:10.1016/j.fsidi.2021.301169. ISSN 2666-2817.
  20. ^ Cox, Joseph (2024-11-19). "Leaked Documents Show What Phones Secretive Tech 'Graykey' Can Unlock". 404 Media. Retrieved 2024-11-19.
  21. ^ Cox, Joseph (2021-06-22). "Instructions Show How Cops Use GrayKey to Brute Force iPhones". Vice. Retrieved 2024-07-17.
  22. ^ "Look, a GrayKey interface on the internet!". 2018-05-25. Retrieved 2021-01-04.
  23. ^ "Hackers Leaked The Code Of iPhone Cracking Device "GrayKey", Attempted Extortion". 2018-05-24. Retrieved 2021-01-04.
  24. ^ "Grayshift Introduces Android Support on GrayKey". Grayshift. Retrieved 2021-05-25.
[edit]