So, how do you pull this off? Here’s a video that shows the process:
In short, what this guy did is start a FaceTime call and then accessed the voiceover feature from Siri to enable access to the contact list. You can then obtain email addresses, phone numbers, address information, and more from the list of contacts. I have replicated this on an iPhone running iOS 13 and it is very easy to do.
It’s also very easy to protect yourself. You just need to go to Face ID & Passcodesettings ->Allow access when locked and toggle off the Reply with Message option. If you’ve already updated to iOS 13, you should go do that now to protect yourself. As in right now.
This entry was posted on September 20, 2019 at 10:18 am and is filed under Commentary with tags Apple. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
So What Is This Security Flaw In iOS 13 That Everyone Is Talking About? Here Are The Details.
Last night I wrote that Apple had released iOS 13 despite the fact that a security flaw was present and unpatched that allowed someone with physical access to the phone to bypass the lock screen and get access to contact info on an iPhone. What’s worse was that this was reported in July but Apple didn’t bother fixing it in iOS 13 before it shipped yesterday. But the only good news is that it is fixed in iOS 13.1 which is due for release next Tuesday. Which every user of iOS should immediately update to the second that it becomes available.
So, how do you pull this off? Here’s a video that shows the process:
In short, what this guy did is start a FaceTime call and then accessed the voiceover feature from Siri to enable access to the contact list. You can then obtain email addresses, phone numbers, address information, and more from the list of contacts. I have replicated this on an iPhone running iOS 13 and it is very easy to do.
It’s also very easy to protect yourself. You just need to go to Face ID & Passcode settings -> Allow access when locked and toggle off the Reply with Message option. If you’ve already updated to iOS 13, you should go do that now to protect yourself. As in right now.
Share this:
Like this:
Related
This entry was posted on September 20, 2019 at 10:18 am and is filed under Commentary with tags Apple. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.