iOS 6.1 lock screen bypass discovered, Apple working on a fix
Posted on 15 Feb 2013 at 09:42, by Gareth Halfacree
Apple has admitted that its latest iOS 6.1 software update has a security flaw that allows an attacker to bypass the lock screen without entering a passcode - but promises that it is working on a fix.
The flaw appears in the way the Emergency Call functionality works on the handset. As required in many countries by telecom regulators, an iPhone allows a user to make a call to one of a list of official emergency numbers - such as 911 in the US and 999 in the UK - without entering the phone's passcode. Entering the hack is a somewhat laborious process - involving holding the power button, making a call to an emergency number but cancelling it before it goes through, holding the power button again and tapping the emergency call option as quickly as possible - but still represents a serious breach in security.
In mitigation, the bypass doesn't allow full access to the handset or its installed applications. It does, however, allow the attacker to make calls to any arbitrary number, access contact details and browse the on-device photo roll.
Meanwhile, users are still reporting issues with the
iPhone 4S draining its battery and losing 3G connections, even after installing the iOS 6.1.1 update specifically designed to address these problems. With the issue serious enough for Vodafone to issue a warning against installing iOS 6.1, it's looking like upgrading any iPhone 4S from iOS 6.0 is a bad idea until a further patch can be developed.
Apple has stated that it is investigating the software issues in iOS and will deliver a fix in a future update, but declined to give a firm time scale for its release.
Find a review
- LG G3 could arrive in two resolutions
- iPhone 6 case leak seemingly confirms relocated power button
- Bricked! Apple, Google, Microsoft, Nokia and Samsung to add anti-theft kill switch to new phones
- Samsung Galaxy Note 4 specs, screen, features, release date, price, news and rumours
- Samsung Android Wear smartwatch in the works, Gear wearables could soon work with all Android smartphones
- Google Project Ara set for January 2015 release date
- Amazon smartphone reportedly leaked ahead of official announcement
- Android 4.4.3 update available NOW on the Nexus 5
- Galaxy S5 teardown suggests Samsung makes $394 profit on every handset
- Windows Phone 8.1 developer preview is free - and here's how to get it