HACKINTOSH.ORG | Macintosh discussion forums

Macintosh News => iPhone/iPod/iPad News => Topic started by: HCK on April 06, 2016, 04:05:20 pm



Title: Apple fixes Siri exploit that gave access to contacts and photos without passcode
Post by: HCK on April 06, 2016, 04:05:20 pm
Apple fixes Siri exploit that gave access to contacts and photos without passcode

Apple has fixed an exploit discovered in iOS 9.3.1 this week that leveraged Siri to gain access to photos and contacts on an iPhone 6s or 6s Plus without entering a passcode. According to The Washington Post, an unnamed Apple spokesperson confirmed the exploit had already been patched this morning: An Apple spokeswoman confirmed that the bug was fixed Tuesday morning. Most consumers should have a fix in place — without the need for a software update. Demonstrated in a YouTube video that began doing the rounds on Monday, the exploit involved using the voice-activated "Hey Siri" feature on the lock screen to ask Siri to search Twitter for an email address. Once an email address was found, users could then 3D Touch the address in the tweet and tap "Add to existing contact" in the context menu to gain access to the phone's contacts. Photos could then be accessed by choosing a contact and tapping "Add Photo." While it's certainly a convoluted process, the exploit did allow acces...<br clear='all'/>

<a href="http://rc.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/rc/1/rc.htm" rel="nofollow"><img src="http://rc.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/rc/1/rc.img" border="0"/>[/url]

<a href="http://rc.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/rc/2/rc.htm" rel="nofollow"><img src="http://rc.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/rc/2/rc.img" border="0"/>[/url]

<a href="http://rc.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/rc/3/rc.htm" rel="nofollow"><img src="http://rc.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/rc/3/rc.img" border="0"/>[/url]

<img src="http://da.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/a2.img" border="0"/> (http://da.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/a2.htm)<img width="1" height="1" src="http://pi.feedsportal.com/r/257412439300/u/49/f/616881/c/33998/s/4ebefbce/sc/28/a2t.img" border="0"/><img width='1' height='1' src='(http://tipb.com.feedsportal.com/c/33998/f/616881/s/4ebefbce/sc/28/mf.gif)' border='0'/>

Source: Apple fixes Siri exploit that gave access to contacts and photos without passcode (http://feedproxy.google.com/~r/TheIphoneBlog/~3/rq5fxdY48Nk/story01.htm)