No, you’re not reading an old story. There really is yet another serious iOS security flaw which allows someone to access information on your supposedly password-protected iPhone.
As the Brazilian fellow in the video above shows, all that you need to do is grab a password-protected iPhone running iOS 4.1, pretend to make an emergency call but dial ### or some other nonsensical number instead, tap the lock button real quick, and tada! You’ll have access to the device’s contacts, voicemail, call history, voice control and phone features.
We’ve replicated this trick successfully on several iPhones running iOS 4.1, but we found no luck when we tried it on an iPhone running iOS 4.2 Beta 3. This could mean that Apple is already aware of the flaw and has the fix ready. [Wired]
matt
Tuesday, October 26, 2010 at 12:17 PMlol, look at the cute little apple user who thinks that this kind of thing should never happen on an Apple product.
also, like password protection was ever really that much protection, anyone could get in if they REALLY wanted to. so seeing as how someone physically needs to grab your phone to do this, its hardly a big deal. just don’t loose your phone. (or even better advice, don’t put sensitive info on it)
Merwyn
Tuesday, October 26, 2010 at 12:40 PMWhat he said! (the last bit in brackets)
Gareth
Tuesday, October 26, 2010 at 12:44 PMIf someone has your phone physically with them, then they can do all sorts of things with it, I’d hardly call this a “serious” flaw.
Sam of K
Tuesday, October 26, 2010 at 1:10 PM@matt
or get mobile me and wipe the contents as soon as you know its missing ….
JAck
Tuesday, October 26, 2010 at 1:11 PMI cant replicate this on my 3GS running 4.1…..
Ben Dy
Tuesday, October 26, 2010 at 10:57 PMMe either…
OMG
Tuesday, October 26, 2010 at 2:46 PMOMG, and it even makes everything backwards…
Tony
Tuesday, October 26, 2010 at 3:34 PMI was only able to replicate it once after 10 tries
Nathan Millson
Tuesday, October 26, 2010 at 3:40 PMOnce you’ve done this, click ‘Share Contact’ as an MMS. You can then view the photos app.
Nasty.
Tony
Wednesday, October 27, 2010 at 12:16 PMwas also able to replicate it on a JB 4.0.1 iphone. Nathan you right, if you could find a place that has little signal is works most of the time
Matt L
Tuesday, October 26, 2010 at 11:44 PMI’m using 4.0.1. I could do it about 3 times, but each time, somewhere between 5-10 seconds it’d close back down to the enter pin screen automatically… Then the phone seems to now know what I’m trying to do lol… maybe it’ll be easier to do if you had no signal, because it would take longer for the phone to realise that calls going nowhere and give you more time to do it… I accidently dialed 000 while making that call :|
J
Wednesday, October 27, 2010 at 4:26 AMJust replicated this on an iPhone 4 running 4.2!!!
W…T…F!!!
Jamie
Sunday, October 31, 2010 at 4:55 AMWorks on iPhone 3GS every time plus ones your in the dial screen double click you get access to multitasked apps. Click on any of those and then click home Button ones again and your by passed the security and have full access