[TheAceOfHearts]

First of all, why would anyone even care about you enough to want to steal whatever health data is available? Is there any particularly sensitive personal info stored there?

Second, presumably if one gains access to the device through a sophisticated hack they'd probably also be able to exfiltrate data without having to alert the user.

With all of that being said, I wish there was some sort of black box mechanism for logging certain events in such a way that the device itself can't tamper with it. That way you'd have a log that can be easily analyzed to judge whether or not a hack is likely to have taken place. Right now if you open the syslog on an Apple device it's filled with so much crap that it's basically impossible to detect if anything nefarious was likely to be happening.

[yreg]

> First of all, why would anyone even care about you enough to want to steal whatever health data is available? Is there any particularly sensitive personal info stored there?

This is a strange argument. Of course there can be sensitive data there. Photos, (i)Messages, eMail, calendar events, addressbook, health data, voice recordings, location data. The device is password-protected for a reason.

It is also usually connected to a paired iPhone and to the Internet. You might be able to do some shady stuff with the phone using private APIs.

[kfreds]

> .. I wish there was some sort of black box mechanism for logging certain events in such a way that the device itself can't tamper with it..

This is called an append-only log. It can be built in many ways. Which way is suitable largely depends on the security requirements.

My personal favorite kind of append-only logging is transparency logging. If you'd like to learn more you can check out e.g. sigsum.org, an open-source project my colleagues and I have been working on for several years now.

[saagarjha]

I just looked through what Health stores and it has fields for your lab test results and sexual history. Seems fairly sensitive?