It is not uncommon for new operating systems have bugs that need to be developed, and iOS 9 is no exception. There is a way to exploit Siri to access locked devices running iOS 9, without the need for the access code.
Here I will show you how to exploit the vurnability using siri, step by step
A recently released update 9.0.1 for Apple iOS 9 does not address this issue, but the next iOS 9.1 (currently in beta) can be solved in a not too distant future. This is far from the first bug lock-screen to pan on Apple or Android devices, but the fact that you must have the device makes it less risky then defects that give attackers remote access to personal information. For all its features, security in the latest OS from Apple (and to be honest, safety in general) remains a work in progress.
Here I will show you how to exploit the vurnability using siri, step by step
- Wake the iOS device and Enter an incorrect passcode four times.
- For the fifth time, Enter 3 or 5 digits (depending on how long your passcode is), and for the last one, press and hold the Home button to invoke Siri immediately followed by the 4th digit.
- After Siri appears, ask her for the time.
- Tap the Clock icon to open the Clock app, and add a new Clock, then write anything in the Choose a City field.
- Now double tap on the word you wrote to invoke the copy & paste menu, Select All and then click on “Share“.
- Tap the ‘Message‘ icon in the Share Sheet, and again type something random, hit Return and double tap on the contact name on the top.
- Select “Create New Contact,” and Tap on “Add Photo” and then on “Choose Photo“.
- You’ll now be able to see the entire photo library on the iOS device, which is still locked with a passcode. Now browse and view any photo from the Photo album individually.
This may seem a minor bug, but it has important implications for privacy. In the wake of actions by the NSA and other government agencies at home and abroad, it is clear that such matters are not harmless flaws - they are operated as law enforcement local and federal are absolutely ready to exploit in order to gather evidence, even if it is illegal. Many local police departments were challenged about their use of skates and other devices, and often chose to mislead judges about how these devices will be used, assuming they allowed to use them at all. As readers of number plates have become more common, law enforcement has explored the idea of an alliance with private companies that have fewer restrictions on how they collect and maintain data.
Users who are concerned about which device features are available for use when locked can control these settings from the Touch ID & Passcode section of the Settings menu. "Disable functions as Siri can be a little annoying, but it can also prevent similar hacks function, if any are found.
Users who are concerned about which device features are available for use when locked can control these settings from the Touch ID & Passcode section of the Settings menu. "Disable functions as Siri can be a little annoying, but it can also prevent similar hacks function, if any are found.
A recently released update 9.0.1 for Apple iOS 9 does not address this issue, but the next iOS 9.1 (currently in beta) can be solved in a not too distant future. This is far from the first bug lock-screen to pan on Apple or Android devices, but the fact that you must have the device makes it less risky then defects that give attackers remote access to personal information. For all its features, security in the latest OS from Apple (and to be honest, safety in general) remains a work in progress.
EmoticonEmoticon