> and as we all know once you have physical control security is somewhat out the window anyway.
This is such a defeatist attitude, and it has also proven to be (mostly) false by Apple and its iPhones. If we stopped saying that every time there is a hack like this, perhaps companies would actually give a damn to make sure it doesn't happen anymore, or not nearly as easily.
It's one thing to pay from tens of thousands of dollars to a million for modification of a chip in a factory or with highly-advanced equipment, and it's quite another to just insert a USB stick into a random PC and hack it.
That was an iPhone 5C. These didn't have Secure Enclave inside them, and it still wasn't an easy feat to access the device - they probably had to disassemble it and copy the flash storage straight from the chip to do it, unless they've used an unreleased 0day. If it were an iPhone 5S (3 years old) or newer, they wouldn't be able to access the data on the device at all.
This is such a defeatist attitude, and it has also proven to be (mostly) false by Apple and its iPhones. If we stopped saying that every time there is a hack like this, perhaps companies would actually give a damn to make sure it doesn't happen anymore, or not nearly as easily.
It's one thing to pay from tens of thousands of dollars to a million for modification of a chip in a factory or with highly-advanced equipment, and it's quite another to just insert a USB stick into a random PC and hack it.