iOS 18 has introduced a new security feature, making life harder for law enforcement trying to unlock iPhones.

According to 404 Media, this latest addition reboots iPhones that haven’t been unlocked in a few days, putting them in a more secure “Before First Unlock” (BFU) mode. The BFU state, which kicks in after a device restarts, requires the phone’s passcode for access, limiting what data forensic experts can extract.

404 Media first reported police concerns over the feature, explaining that in iOS 18.1, Apple added code that triggers a restart if the phone has been locked for four days. Chris Wade, founder of Corellium—a mobile analysis company—pointed this out, and Dr.-Ing. Jiska Classen of the Hasso Plattner Institute shared screenshots showing the code.

IOS and Android devices enter this BFU state on reboot, requiring a passcode or PIN to unlock the phone fully. As confirmed by Dakota State University’s digital forensics lab, this makes it much harder for forensic experts to access device data.

Apple hasn’t commented on this new reboot feature, but it aligns with the company’s ongoing effort to strengthen iPhone security. For years, Apple has been resisting pressure from law enforcement to create encryption backdoors, even as authorities search for alternative methods to access locked devices.

READ
Apple’s iOS 18.1 Adds ‘Inactivity Reboot’ for Enhanced Data Security