Protect your iOS device 2024-10-07, 02:26

Protect your iOS device

Front Line Defenders

Updated30 May 2024

...Loading Table of Contents...

If you use an iPhone or iPad, you may have heard the myth that they are
more secure. This is not necessarily true. Security depends on a combination
of how we use our devices and their own software, which can be found to
have vulnerabilities at any time. Follow the steps in this guide to make your
device more secure. Get in the habit of checking these settings from time to
time, to make sure nothing has changed.

Use the latest version of your device's operating

system (OS)
When updating software, do it from a trusted location and internet
connection, like your home or office, not at an internet cafe or coffee
shop.
Updating to the latest version of your operating system may require you
to download software and restart a number of times. You will want to set
aside time for this where you do not need to do work on your device.
After updating, check again if there are any further updates available
until you do not see any additional new updates.
If the iOS version that runs in your device is unmaintained, it is best to
consider buying a new device.
Find out which is the most updated version available.
Compare it to the version your device has installed.

https://securityinabox.org/en/phones-and-computers/ios/ Page 1 of 11
Protect your iOS device 2024-10-07, 02:26

Update your operating system.

Set your OS to update on its own.
To make sure an update is fully installed, always restart your device
when prompted to do so after downloading the update.

Notes

The iOS update guide recommends backing up your device through

several methods, including iCloud (which means Apple's own servers),
before you update your operating system. Consider which is the safest
method for you, given the threats you face. In general, we recommend
backing up your phone or tablet to your own computer.

Learn why we recommend this

Turn Lockdown Mode on

If you use iPhone, iPad or another iOS device, we strongly suggest to turn
Lockdown Mode on. Most likely you will not see any or much difference in
the way your device works, but you will be much better protected.

Learn why we recommend this

Use apps from trusted sources

We recommend not jailbreaking your device, as it puts you at greater
risk from malicious code.
Install apps from the App Store instead.

Learn why we recommend this

Remove apps that you do not need and do not

https://securityinabox.org/en/phones-and-computers/ios/ Page 2 of 11
Protect your iOS device 2024-10-07, 02:26

use
Follow the instructions on how to delete apps from iPhone.

Learn why we recommend this

Use privacy-friendly apps

You can browse the web with Firefox.
You can use free and open source software for almost everything you
need to do on an iOS device. To decide whether you should use a
certain app, see how Security in a Box chooses the tools and services
we recommend.

Learn why we recommend this

If possible, avoid using social media apps

Access social media and other sites by logging in through your browser
instead.

Learn why we recommend this

Check your app permissions

Review all permissions one by one to make sure they are enabled only for
apps you use. The following permissions should be turned off in apps you do
not use, and considered suspicious when used by apps you do not
recognize:

Location

https://securityinabox.org/en/phones-and-computers/ios/ Page 3 of 11
Protect your iOS device 2024-10-07, 02:26

Contacts

SMS

Microphone

Camera

Call logs

Phone

Modify or change system settings

Allowed to download other apps

Calendars

Reminders

Photos

Bluetooth

Local Network

Nearby Interactions

Speech Recognition

Health

Media

Files and Folders

https://securityinabox.org/en/phones-and-computers/ios/ Page 4 of 11
Protect your iOS device 2024-10-07, 02:26

Motion & Fitness

Learn more on this in the Security Planner article on how to review your
iPhone’s app permissions.

More info on privacy and location services

More info on other app permissions

Learn why we recommend this

Turn off location and wipe history

Get in the habit of turning off location services overall, or when you are
not using them, for your whole device as well as for individual apps.
Learn how to turn off location on your device.
Regularly check and clear your location history if you keep it turned on.
Learn how to clear your location history in the Maps app on your
iPhone or iPad.
Regularly check and clear your location history in Google Maps if
you keep it turned on. To delete past location history and set it so
Google Maps does not save your location activity, follow the
instructions for your Google Maps Timeline and your Maps activity.

Learn why we recommend this

Secure the accounts connected with your device

Review Apple's checklist to protect your Apple ID and password. In
particular, make sure to set a strong password, to enable 2-factor
authentication and not to share your Apple ID account with anyone.
Learn how to check your device list to see which devices are connected

https://securityinabox.org/en/phones-and-computers/ios/ Page 5 of 11
Protect your iOS device 2024-10-07, 02:26

to your Apple ID account.

Also see our guide on social media accounts to check other accounts
connected with your device.
You may want to take a picture or screenshot of results showing
suspicious activity, like devices you have disposed of, don't have control
of or don't recognize.
Follow the steps suggested by Apple if you think your Apple ID has
been compromised.

Learn why we recommend this

Remove permissions to access your device,

accounts or information
If you’re running iOS 15 or earlier, use this checklist to see if anyone else
has access to your device or accounts.
If you’re running iOS 16 or later, you can use Safety Check to:
review and update information you share with people, apps, and
devices.
stop sharing information from Apple apps to other people.
In some cases, you may also be sharing information that the the tools
above can’t help you detect. Read the additional considerations when
using Safety Check to decide what steps you can take to reduce the
amount of information you’re sharing.
Learn how you can manage the information you share with people and
apps with iOS' built-in privacy and security protections.

Learn why we recommend this

Set your screen to sleep and lock

https://securityinabox.org/en/phones-and-computers/ios/ Page 6 of 11
Protect your iOS device 2024-10-07, 02:26

Set your screen to lock a short time after you stop using it (5 minutes is
good).
Use a longer passphrase (minimum 10 characters), not a short
password or PIN.
Making it possible to use your fingerprint, face, eyes or voice to unlock
your device can be used against you by force; do not use these options
unless you have a disability which makes typing impossible.
Remove your fingerprints and face from your device if you have
already entered them.
Learn how to remove a fingerprint in Manage your Touch ID
settings.
Learn how to turn off Face ID in the guide to set up Face ID on
iPhone.
Simple "swipe to unlock" options are not secure locks; do not use this
option.
Learn how to set a "passcode" in Apple's guide on setting passcodes
on iPhone, iPad or iPod touch.

Learn why we recommend this

Control what can be seen when your device is

locked
In your notification settings, ensure "show previews" is set to "When
Unlocked" or "Never".
In Settings, go to Face ID & Passcode (or Touch ID & Passcode) and
turn off Accessories under Allow Access When Locked. For more
information, see Allow USB and other accessories to connect to your
iPhone, iPad, or iPod touch.
Review what else is allowed when your phone is locked in Settings >

https://securityinabox.org/en/phones-and-computers/ios/ Page 7 of 11
Protect your iOS device 2024-10-07, 02:26

Touch ID & Passcode (or Face ID & Passcode) > Allow Access When
Locked, and turn off options you would not want other people to access
when your device is locked. In particular, be sure to disable access to
the Notification Center and the Control Center when your device is
locked. For more information, see Control access to information on the
iPhone Lock Screen.

Learn why we recommend this

Disable voice controls

Turn off classic voice control and/or Siri.
Learn how to turn off Siri in the official guide on changing when Siri
responds. In particular, make sure to turn off the "Allow Siri When
Locked" option.
Turn off Dictation: go to Settings > General > Keyboard, then tap to turn
off Enable Dictation. By turning off both Ask Siri and Dictation, Apple
will delete Siri Data that is associated with your account.
Read Ask Siri, Dictation & Privacy to learn more about how Apple treats
the data it gathers when you use Siri.
If you have decided the benefits to you outweigh the large risks of using
voice control, follow the Security Planner instructions to do so more
safely.

Learn why we recommend this

Use a physical privacy filter that prevents others

from seeing your screen
For more information on this topic, see the Security Planner guide on
privacy filters.
https://securityinabox.org/en/phones-and-computers/ios/ Page 8 of 11
Protect your iOS device 2024-10-07, 02:26

Learn why we recommend this

Use a camera cover

First of all, figure out whether and where your device has cameras. Your
smartphone might have more than one.
You can create a low-tech camera cover: apply a small adhesive
bandage on your camera and peel it off when you need to use the
camera. A bandage works better than a sticker because the middle part
has no adhesive, so your lens won't get sticky.
In alternative, search your preferred store for the model of your device
and "webcam privacy cover thin slide" to find the most suitable sliding
cover for your phone or tablet.

Learn why we recommend this

Turn off connectivity you're not using

Completely power off your devices at night.
Get into the habit of keeping wifi, Bluetooth and/or network sharing off
and only enable them when you need to use them.
Airplane mode can be a quick way to turn off connectivity on your
mobile. Learn how to selectively turn on wifi and Bluetooth once your
device is in Airplane mode, to use only the services you want.
Turn Airplane mode on and make sure wifi and Bluetooth are off.
To learn how to selectively turn on wifi and Bluetooth while your
device is in Airplane mode, see Apple's guide on how to use
Airplane mode.
Disable Bluetooth and wifi whenever you aren't using them. To do this,
go to Settings and DO NOT use the Control Center (the swipe up from
the bottom of the screen). The Control Center only lets you disconnect
https://securityinabox.org/en/phones-and-computers/ios/ Page 9 of 11
Protect your iOS device 2024-10-07, 02:26

from the currently connected Bluetooth devices or wifi networks and

does not include the option to disable Bluetooth or wifi altogether.
Turn off Personal Hotspot when you are not using it.
Make sure your device is not providing an internet connection to
someone else using Personal Hotspot. Go to Settings > Cellular >
Personal Hotspot or Settings > Personal Hotspot and make sure
that the "Allow Others to Join" option is disabled.
Learn how to disconnect devices in the official guide on how to set
up a Personal Hotspot on iOS devices.

Learn why we recommend this

Clear your saved wifi networks

Save network names and passwords in your password manager instead
of your device's list of networks.
If you do save network names and passwords in your list of saved wifi
networks, get in the habit of regularly erasing them when you aren't
using them anymore and turn off "Auto-Join". To learn how to do this,
see Apple's guide on how to forget wifi networks on iOS devices.
You can also reset your phone's network settings altogether to remove
all saved wifi networks and bluetooth devices. To learn how to reset
your network settings, see Reset iPhone settings to their defaults.

Learn why we recommend this

Turn off sharing you're not using

Turn off AirDrop by checking the "Receiving Off" option and remove
from your list of Contacts anyone you don't want to share data with.

https://securityinabox.org/en/phones-and-computers/ios/ Page 10 of 11
Protect your iOS device 2024-10-07, 02:26

Learn why we recommend this

Advanced: figure out whether someone has

accessed your device without your permission
(basic forensics)
Follow the steps on the following checklists:

Review iCloud accounts.

Check for Mobile Device Management profiles.
Check for jailbreaks.
Check devices linked to chat applications.
Monitor network traffic.
If you suspect your device may be compromised, follow the steps in the
Digital First Aid Kit troubleshooter My device is acting suspiciously.

Learn why we recommend this

More resources
Security in a Box malware guide
Personal Safety User Guide for Apple devices

https://securityinabox.org/en/phones-and-computers/ios/ Page 11 of 11