He Stole Hundreds of iPhones and Looted People’s Life Savings. He Told Us How.
Kanebridge News
BUY KANEBRIDGE
quarterly MAGAZINE
0 $ 0.00

No products in the cart.

Wishlist -
    HOUSE MEDIAN ASKING PRICES AND WEEKLY CHANGE     Sydney $1,766,872 (+0.21%)       Melbourne $1,063,597 (+0.19%)       Brisbane $1,235,996 (-0.71%)       Adelaide $1,100,588 (+1.40%)       Perth $1,114,234 (+0.36%)       Hobart $869,301 (-0.74%)       Darwin $915,158 (+0.08%)       Canberra $1,030,597 (+1.34%)       National Capitals $1,197,064 (+0.25%)                UNIT MEDIAN ASKING PRICES AND WEEKLY CHANGE     Sydney $817,869 (+0.11%)       Melbourne $552,138 (-0.21%)       Brisbane $784,920 (-1.69%)       Adelaide $585,744 (+1.59%)       Perth $658,340 (-1.87%)       Hobart $565,063 (-1.53%)       Darwin $494,206 (+0.53%)       Canberra $485,800 (-1.53%)       National Capitals $640,344 (-0.70%)                HOUSES FOR SALE AND WEEKLY CHANGE     Sydney 14,003 (-141)       Melbourne 16,852 (-119)       Brisbane 7,876 (+60)       Adelaide 2,794 (-13)       Perth 6,084 (+33)       Hobart 771 (-22)       Darwin 139 (+2)       Canberra 1,196 (+25)       National Capitals 49,715 (-175)                UNITS FOR SALE AND WEEKLY CHANGE     Sydney 9,308 (-9)       Melbourne 6,777 (-31)       Brisbane 1,556 (-5)       Adelaide 434 (-6)       Perth 1,292 (+16)       Hobart 154 (-9)       Darwin 198 (+7)       Canberra 1,191 (+1)       National Capitals 20,910 (-36)                HOUSE MEDIAN ASKING RENTS AND WEEKLY CHANGE     Sydney $850 ($0)       Melbourne $600 ($0)       Brisbane $700 ($0)       Adelaide $650 ($0)       Perth $750 ($0)       Hobart $628 (+$3)       Darwin $850 ($0)       Canberra $750 ($0)       National Capitals $733 (+$)                UNIT MEDIAN ASKING RENTS AND WEEKLY CHANGE     Sydney $800 ($0)       Melbourne $590 ($0)       Brisbane $670 ($0)       Adelaide $560 (+$5)       Perth $700 ($0)       Hobart $503 (-$38)       Darwin $650 ($0)       Canberra $600 ($0)       National Capitals $646 (-$2)                HOUSES FOR RENT AND WEEKLY CHANGE     Sydney 5,466 (-47)       Melbourne 6,685 (-129)       Brisbane 3,539 (-24)       Adelaide 1,337 (+2)       Perth 2,237 (-54)       Hobart 240 (+8)       Darwin 38 (-10)       Canberra 431 (+10)       National Capitals 19,973 (-244)                UNITS FOR RENT AND WEEKLY CHANGE     Sydney 8,715 (+45)       Melbourne 4,547 (+16)       Brisbane 1,877 (-18)       Adelaide 430 (0)       Perth 686 (+10)       Hobart 66 (-5)       Darwin 65 (-5)       Canberra 721 (+2)       National Capitals 17,107 (+45)                HOUSE ANNUAL GROSS YIELDS AND TREND         Sydney 2.50% (↓)       Melbourne 2.93% (↓)     Brisbane 2.94% (↑)        Adelaide 3.07% (↓)       Perth 3.50% (↓)     Hobart 3.75% (↑)        Darwin 4.83% (↓)       Canberra 3.78% (↓)       National Capitals 3.19% (↓)            UNIT ANNUAL GROSS YIELDS AND TREND         Sydney 5.09% (↓)     Melbourne 5.56% (↑)      Brisbane 4.44% (↑)        Adelaide 4.97% (↓)     Perth 5.53% (↑)        Hobart 4.62% (↓)       Darwin 6.84% (↓)     Canberra 6.42% (↑)      National Capitals 5.24% (↑)             HOUSE RENTAL VACANCY RATES AND TREND       Sydney 1.4% (↑)      Melbourne 1.5% (↑)      Brisbane 1.2% (↑)      Adelaide 1.2% (↑)      Perth 1.0% (↑)        Hobart 0.5% (↓)       Darwin 0.7% (↓)     Canberra 1.6% (↑)      National Capitals $1.1% (↑)             UNIT RENTAL VACANCY RATES AND TREND       Sydney 1.4% (↑)      Melbourne 2.4% (↑)      Brisbane 1.5% (↑)      Adelaide 0.8% (↑)      Perth 0.9% (↑)      Hobart 1.2% (↑)        Darwin 1.4% (↓)     Canberra 2.7% (↑)      National Capitals $1.5% (↑)             AVERAGE DAYS TO SELL HOUSES AND TREND         Sydney 33.5 (↓)       Melbourne 32.6 (↓)     Brisbane 33.4 (↑)      Adelaide 26.4 (↑)        Perth 37.8 (↓)       Hobart 29.4 (↓)     Darwin 27.8 (↑)        Canberra 30.0 (↓)       National Capitals 31.4 (↓)            AVERAGE DAYS TO SELL UNITS AND TREND         Sydney 31.4 (↓)       Melbourne 29.8 (↓)       Brisbane 32.2 (↓)     Adelaide 26.2 (↑)        Perth 37.5 (↓)       Hobart 31.4 (↓)     Darwin 37.4 (↑)        Canberra 38.7 (↓)       National Capitals 33.1 (↓)           
Share Button

He Stole Hundreds of iPhones and Looted People’s Life Savings. He Told Us How.

A convicted iPhone thief explains how a vulnerability in Apple’s software got him fast cash—and then a stint in a high-security prison

By JOANNA STERN
Thu, Dec 21, 2023 8:37amGrey Clock 5 min

RUSH CITY, Minn.—Before the guards let you through the barbed-wire fences and steel doors at this Minnesota Correctional Facility, you have to leave your phone in a locker. Not a total inconvenience when you’re there to visit a prolific iPhone thief.

I wasn’t worried that Aaron Johnson would steal my iPhone, though. I came to find out how he’d steal it.

“I’m already serving time. I just feel like I should try to be on the other end of things and try to help people,” Johnson, 26 years old, told me in an interview we filmed inside the high-security prison where he’s expected to spend the next several years.

For the past year, my colleague Nicole Nguyen and I have investigated a nationwide spate of thefts, where thieves watch iPhone owners tap their passcodes, then steal their targets’ phones—and upend their financial and digital lives.

Johnson, along with a crew of others, operated in Minneapolis for at least a year during 2021 and 2022. In and around bars at night, he would befriend young people, slyly learn their passcodes and take their phones. Using that code, he’d lock victims out of their Apple accounts and loot thousands of dollars from their bank apps. Finally, he’d sell the phones themselves.

It was an elaborate, opportunistic scheme that exploited the Apple ecosystem and targeted trusting iPhone owners who figured a stolen phone was just a stolen phone.

Last week, Apple announced Stolen Device Protection, a feature that likely will protect against these passcode-assisted crimes.

Yet even when you install the software, due in iOS 17.3, there will be loopholes. The biggest loophole? Us. By hearing how Johnson did what he did, we can learn how to better secure the devices that hold so much of our lives.

How he got started

Johnson isn’t a sophisticated cybercriminal. He said he got his start pickpocketing on the streets of Minneapolis. “I was homeless,” he said. “Started having kids and needed money. I couldn’t really find a job. So that’s just what I did.”

Soon he realised the phones he was nabbing could be worth a lot more—if only he had a way to get inside them. Johnson said no one taught him the passcode trick, he just stayed up late one night fiddling with a phone and figured out how to use the passcode to unlock a bounty of protected services.

“That passcode is the devil,” he said. “It could be God sometimes—or it could be the devil.”

According to the Minneapolis Police Department’s arrest warrant, Johnson and the other 11 members of the enterprise allegedly accumulated nearly $300,000. According to him, it was likely more.

“I had a rush for large amounts at a time,” he said. “I just got too carried away.”

In March, Johnson, who had prior robbery and theft convictions, pleaded guilty to racketeering and was sentenced to 94 months. He told the judge he was sorry for what he did.

How he did it

Here’s how the nightly operation would go down, according to interviews with Johnson, law-enforcement officials and some of the victims:

Pinpoint the victim. Dimly lit and full of people, bars became his ideal location. College-age men became his ideal target. “They’re already drunk and don’t know what’s going on for real,” Johnson said. Women, he said, tended to be more guarded and alert to suspicious behaviour.

Get the passcode. Friendly and energetic, that’s how victims described Johnson. Some told me he approached them offering drugs. Others said Johnson would tell them he was a rapper and wanted to add them on Snapchat. After talking for a bit, they would hand over the phone to Johnson, thinking he’d just input his info and hand it right back.

“I say, ‘Hey, your phone is locked. What’s the passcode?’ They say, ‘2-3-4-5-6,’ or something. And then I just remember it,” Johnson described. Sometimes he would record people typing their passcodes.

Once the phone was in his hand, he’d leave with it or pass it to someone else in the crew.

Lock them out—fast. Within minutes of taking the iPhones, Johnson was in the Settings menu, changing the Apple ID password. He’d then use the new password to turn off Find My iPhone so victims couldn’t log in on some other phone or computer to remotely locate—and even erase—the stolen device.

Johnson was changing passwords fast—“faster than you could say supercalifragilisticexpialidocious,” he said. “You gotta beat the mice to the cheese.”

Take the money. Johnson said he would then enrol his face in Face ID because “when you got your face on there, you got the key to everything.” The biometric authentication gave Johnson quick access to passwords saved in iCloud Keychain.

Savings, checking, cryptocurrency apps—he was looking to transfer large sums of money out. And if he had trouble getting into those money apps, he’d look for extra information, such as Social Security numbers, in the Notes and Photos apps.

By the morning, he’d have the money transferred. That’s when he’d head to stores to buy stuff using Apple Pay. He’d also use the stolen Apple devices to buy more Apple devices, most often $1,200 iPad Pro models, to sell for cash.

Sell the phones. Finally, he’d erase the phone and sell it to Zhongshuang “Brandon” Su who, according to his arrest warrant, sold them overseas.

While Johnson did steal some Android phones, he went after iPhones because of their higher resale value. At bars, he’d scope out the scene—looking for iPhone Pro models with their telltale trio of cameras. He said Pro Max with a terabyte of storage could get him $900. Su also bought Johnson’s purchased iPads.

Su pleaded guilty to receiving stolen property and was sentenced to 120 days at an adult corrections facility in Hennepin County, Minn. Neither Su nor his lawyer responded to requests for comment.

On a good weekend, Johnson said, he was selling up to 30 iPhones and iPads to Su and making around $20,000—not including money he’d taken from victims’ bank apps, Apple Pay and more.

How you can prevent it

A week after my trip to Minnesota, Apple announced Stolen Device Protection. The security setting will likely foil most of Johnson’s tricks, but it won’t be turned on automatically.

If you don’t turn it on, you’re as vulnerable as ever. Switching it on adds a line of defence to your phone when away from familiar locations such as home or work.

To change the Apple ID password, a thief would need Face ID or Touch ID biometric scans—that is, your face or your finger. The passcode alone won’t work. And the process has a built-in hourlong delay, followed by another biometric scan. This same slow process is also required for adding a new Face ID and disabling Find my iPhone.

Some functions, such as accessing saved passwords in iCloud Keychain or erasing the iPhone, are available without the delay but still require Face ID or Touch ID.

A criminal might still be motivated to kidnap a person with lots of money, then slowly break through these layers of security. However, the protections will likely dissuade thieves who just want to grab phones and flee the scene.

So what loopholes remain? A thief who gets the passcode could still buy things with Apple Pay. And any app that isn’t protected by an additional password or PIN—like your email, Venmo, PayPal and more—is also vulnerable.

That’s why you should also:

  • Add a distinct passcode to money apps, like Venmo and Cash App.
  • Delete any notes or photos that include personal information such as passwords or Social Security numbers. Store that stuff in a secure note inside a third-party password manager, such as Dashlane or 1Password.
  • Create a stronger iPhone passcode—one that uses letters and numbers.

The most obvious is Johnson’s advice: Watch your surroundings and don’t give your passcode out.

If this crime has taught us anything, it’s that a single device now contains access to our entire lives—our memories, our money and more. It’s on us to protect them.

Nicole Nguyen contributed to this article.

Copyright 2020, Dow Jones & Company, Inc. All Rights Reserved Worldwide.


MOST POPULAR
REVEALED: WHAT EVERY PROPERTY INVESTOR GETS WRONG

As interest rates, inflation and market sentiment fluctuate, investors are being urged to focus on data, not panic.

Gold Dinner Raises $75.5 Million As Australia’s Philanthropy Culture Evolves

Sydney Children’s Hospitals Foundation CEO Kristina Keneally says Australia’s culture of large-scale philanthropy is becoming more sophisticated as Gold Dinner raises $75.5 million for children’s health, research and innovation.

Related Stories
Money
Everything You Need to Know About the SpaceX Trading Debut
By CORRIE DRIEBUSCH 12/06/2026
Money
REVEALED: WHAT EVERY PROPERTY INVESTOR GETS WRONG
By Jeni O'Dowd 12/06/2026
Money
Gold Dinner Raises $75.5 Million As Australia’s Philanthropy Culture Evolves
By Jeni O'Dowd 12/06/2026
Everything You Need to Know About the SpaceX Trading Debut

Shares in Elon Musk’s rocket maker are set to begin trading at midday Friday.

By CORRIE DRIEBUSCH
Fri, Jun 12, 2026 4 min

Elon Musk’s   SpaceX is set to make its stock-market debut Friday in the largest IPO ever—and perhaps the most closely watched. The company sold an outsized portion of the offering to individuals. Its performance on Friday will be a crucial gauge of investor appetite for mega-offerings from OpenAI and Anthropic expected later this year.

The rocket maker, which derives most of its revenue from its satellite internet unit and has a nascent artificial-intelligence business, will trade under the ticker “SPCX.” It sold 555.6 million shares at $135 each, raising about $75 billion in a deal that valued the company at roughly $1.77 trillion.

When will shares open for trading?

SpaceX executives are set to ring the Nasdaq’s opening bell in New York, but shares in buzzy initial public offerings don’t tend to start trading until later in the day.

Bankers leading an IPO typically want to match buyers and sellers for about 10% of the shares sold before opening trading to lessen volatility. For SpaceX, that would be about 55 million shares, or roughly $7.5 billion worth.

Because pre-IPO investors are restricted from selling shares for a while, it can take time to find willing sellers among those who bought shares in a high-demand IPO.

Shares of Alibaba , the largest U.S. IPO until SpaceX, opened for trading a little before noon in its 2014 offering. Last year, one of the highest-profile offerings was that of software maker Figma , whose shares started trading just before 2 p.m.

It is possible that SpaceX’s bankers will decide to start trading without matching the typical portion of orders to ensure the shares have several hours of trading on their first day, people familiar with the matter say.

How volatile will the stock be?

Bankers and traders expect SpaceX’s share price could be volatile in initial trading, thanks in part to the large portion of its shares expected to be held by individual investors. Some who anticipate individuals will rush into the shares worry they could just as easily get spooked and rush out.

Any sharp movement in stock price could trigger so-called circuit breakers that could pause trading. For most newly listed companies, a 10% swing in either direction prompts a five-minute pause. Companies that had their shares halted include Figma and Cerebras Systems , the chip company whose shares soared in its May debut.

These forced timeouts applied to single stocks came after the so-called flash crash in 2010, when the Dow Jones Industrial Average fell 700 points in eight minutes before recouping much of the loss.

What is all the talk about the ‘green-shoe’ option?

If the stock starts trading erratically, bankers have a secret weapon to attempt to calm things down.

Underwriters typically sell more shares to investors than an IPO’s total offer size, colloquially called the green shoe. In SpaceX’s case, they sold about 15% more shares than the stated offering size.

Because this means they technically allocated more than the offering amount, the so-called stabilisation agent, in this case, Morgan Stanley , needs to buy back the excess number of shares to deliver them. If the stock starts to fall, the bank will buy the shares in the open market, which helps buoy the stock price. If the stock isn’t faltering, the stabilisation agent can buy the additional shares they need to deliver to investors directly from the company.

The term “green shoe” comes from the first company to employ a version of this method years ago, a shoemaker that was a predecessor to Stride Rite. When Meta Platforms , then known as Facebook, went public in 2012, its shares started dropping and its bankers stepped in to buy more shares.

How will Elon Musk’s take-it-or-leave-it pricing fare?

Like all things Musk, SpaceX’s IPO bucked the norms. Instead of approaching prospective investors with a possible price range for shares ahead of the IPO and incorporating their feedback, the company set an exact share price from the beginning: $135.

The idea was to limit drama for what is already the biggest IPO of all time. It did, however, remove what many see as an important step along the way: price discovery. The success of this approach will partly be judged by how SpaceX’s shares trade Friday. If the stock surges, critics will say SpaceX left money on the table by not pricing shares higher. If the stock falls or trades flat, there will likely be critiques that SpaceX and its advisers overestimated demand.

Will the machinery hold up—and what will be the wider market impact?

The sheer size of SpaceX’s IPO will test the trading infrastructure at Nasdaq and could have ripple effects in the broader market.

Nasdaq has practiced with mock openings to make sure its trading platform is prepared. When Facebook went public, some investors who tried to change or cancel orders ahead of trading didn’t get confirmations because of a technology malfunction. The confusion contributed to Facebook shares dropping on the first day of trading. They didn’t return back above their IPO price for more than a year.

Meanwhile, some market watchers expect added activity Friday in stocks that individual investors might sell to buy SpaceX shares, such as those of technology companies and Musk’s electric-car maker Tesla . Such sales already appeared to be under way earlier in the week, when individual investors dumped single-stock holdings on a net basis for two days in a row, according to Vanda Research. (To be sure, those sales came on days that were poor showings for tech stocks broadly.)

It will take several days for SpaceX shares to show up in any major index funds , so the offering’s wider impact on the market could play out over the next several weeks or longer.

MOST POPULAR
Where to Invest in 2025: Top-Performing Suburbs in Australia’s Property Market

Australia’s market is on the move again, and not always where you’d expect. We’ve found the surprise suburbs where prices are climbing fastest.

PROPERTY OF THE WEEK: VAUCLUSE CLIFFTOP SANCTUARY ABOVE THE PACIFIC

A Vaucluse masterpiece by MHNDU with interiors by Poco Designs brings architectural ambition and breathtaking ocean outlook to the auction block.

Related Stories
Property
BLOCKBUSTER CRED MAKES THIS HOME A STAR
By Kirsten Craze 08/08/2025
Lifestyle
MEET THE MAN CURATING CITIZEN KANEBRIDGE’S NEXT CHAPTER
By Staff Writer 22/05/2026
Money
THE BUSINESS OF BEING OSCAR PIASTRI
By Stephen Downie 01/12/2025
Load More
Kanebridge MEDIA
Level 3/350 George St,
Sydney NSW 2000
CONNECT with us
0
    Your Cart
    Your cart is emptyReturn to Shop
    Continue Shopping