So based on the article and this thread, I changed my iPhone 4 digit passcode to 6 digits and I am so glad I did. Also I changed the auto-lock down to 1 minute and at first I was annoyed, but again I am so very glad I did.
TLDR;
I dropped my 10 day old iPhone 14 on an open air car tour in Nice France and a very opportunistic thief led me through a chase throughout Nice. Never recovered the phone, and luckily only lost out on the phone cost, plus some lost photos.
Backstory
The day before my wedding I rented a large SUV from the airport to haul all the stuff to the venue and to have an easy day after the wedding to go directly to the airport from the hotel of the first night. So when I went to pick up the behemoth (not use to large SUVs), I was holding my iPhone in my hand as I was climbing in. My elbow hit the A-pillar and it went flying across the garage and shattered when it landed. I ordered a brand new iPhone 14, and had my son bring it to the hotel the day of the wedding. Mistake number 1, I somehow selected paying full freight (not using the Apple Card 0% financing) and selected Apple Care+ WITHOUT Loss and Theft coverage. Double ouch! Also, because I was preoccupied getting married, I didn't have much time to fully transfer the phone over, so I did as much as I could and put both phones in my carryon.
Main Event
All during my trip up until the faithful day, I had problems with the new iPhone. SIM issues getting good signal and using a foreign e-sim. Wifi was either not connecting or extremely slow (my wife didn't experience any of this), and my iPhone and photo cloud sync/backups were hit or miss, unless I manually intervened. Again and foolishly didn't spend a lot of my time away from enjoying myself to dig into the issues fully.
So I was on a tour in an open air scooter in Nice (see
photo), essentially it's a 3 wheel scooter with a shroud. Great tour and I saw some amazing sights, but near the end I saw some people with suitcases waiting to cross the street and I thought I heard the classic sound of a cell phone hitting the ground. I thought to myself, "well someone is having a bad day." A few seconds later when I pulled up to a red light a truck occupant got my attention and informed me that I lost my phone a 1/2 mile back. Seeing that I was a block away from the tour garage, and since they guide was already upset at another group member for holding up the group I proceeded to go ahead rather than turn around, praying that it would still be there. Mistake number 2.
As soon as we stopped at the tour ending point I informed the guide, and he asked if I had location services on it. Luckily my wife did and sure enough the phone was still live. However it was no where near where we had driven by, So the guide immediately threw a helmet (three sizes too small) on my head, and had me get on the back of his Vespa, and we were off on the chase.
I don't know if you have seen people in Europe drive scooters in towns like Paris, Rome, and Nice, but they do not adhere to any road rules. One the back of his scooter, holding on for dear life with one hand and holding my wife's phone with the other to show him the live position of the iPhone, we raced through the streets of Nice. We went the wrong way on oneway streets, up on sidewalks, through red lights, splitting lanes in stopped traffic, and narrowly missing pedestrians and almost getting hit by cars ourself. I must have seen a good portion of that city on this scooter chase of 45 minutes. It was my own version of the French Connection car chase scene. Eventually the thief ducked into a gated community that we couldn't get into. The tour guide who went above and beyond to get my phone back, had to give up and quite frankly I was glad. By that time I wanted just to get back to my AirBnB to lockout and erase the phone.
I spent the next day and a half changing all my passwords to google, apple, my password manager, work credentials, credit cards, financial accounts, and social media. I flagged the serial number and IEMI number to Apple and AT&T to be blacklisted. I even went as far as freezing out all my Credit Cards to make sure they didn't somehow backup my phone and gleam that info. Coincidentally I started receiving spam calls from Malaysia the next two days, I never picked up the phone. Luckily it looks like nothing has been compromised, but I am watching my financials info like a hawk now.
One of the most annoying parts was my support discussions with Apple and AT&T. In the Apple discussion I was trying to get a refund on the Apple Care+ that I only got to use for 10 days. Explaining to them that I didn't need it for a now stolen iPhone, and as expected they heartlessly didn't care. The more frustrating and popsicle headache inducing conversation was with AT&T. To verify my identity they wanted to send a verification text. After carefully explaining for three times, that I didn't have the phone because it was
STOLEN, they still insisted on sending a text. I politely asked if they could email me the code to the email on the account file, and they told me it could only be sent via text. After getting the tech to recognize the flaw in their 2FA system, he told me the text could be sent to any phone on my account. Sigh... Again I explained to him those numbers are in the US and I was in France with the nagging little problem of timezones. Good thing it was now about noon CET and only 6 AM Eastern time. Another 30 minutes of rousing my son that early on a Saturday morning wasn't fun, but eventually I did pass AT&T process of verification... Whew! I did however 1 star their service and gave them a lecture about the flaw in their security process.
All in all, it looks like I just lost the cost of the iPhone and Apple Care+. However, I did lose a day and a half of photos, due to the syncing issue I mentioned about. Also looking back on the chase, I am lucky not to have lost more by getting into trouble in some seedy parts of Nice or have gotten into an accident in a foreign country. The other part to this story is that my wife was alone without her cell phone, and wondering where her husband was after 45 minutes. She did come up with the plan to find the nearest US Consulate and asking if an idiot American was in the hosipital due to aa scooter crash. Luckily we are able laugh about this adventure once I had locked the stolen phone and erased it.