Monday, February 25, 2013, 11:26 am PT (02:26 pm ET)
Another lockscreen passcode flaw found in Apple's iOS 6.1Another vulnerability has been discovered in iOS 6.1 that could give malicious users access to data on an iPhone with a lockscreen passcode enabled.
The vulnerability, which was highlighted on Monday by Jacqui Cheng of Ars Technica, is similar to one that was recently discovered. But the new exploit can make the iPhone screen go black, and allow an attacker to plug in the device to a computer via USB and potentially access the data stored on the handset.
Like the previous hack, the exploit can be accessed by making and then immediately canceling an emergency call on a passcode-locked device.
Of course, a hacker must have physical access to the device for the exploit to yield any data. But using the method highlighted, data such as contacts and voicemails could be extracted from a stolen iPhone even if a passcode lock were enabled on the device.
The previously highlighted lockscreen bug will be addressed by Apple in a forthcoming software update. A beta version of iOS 6.1.3 that addresses the issue was supplied by Apple to developers for testing last week.
Apple's iOS platform has had a history of lockscreen passcode bugs, as Cheng noted issues have existed in iOS 2.0, iOS 4.1, and now iOS 6.1.
On Topic: iPhone
- NXP hopes Apple's adoption of NFC will encourage automakers to use its chips to replace car keys
- Samsung, Apple retain global smartphone lead in Q3 as Xiaomi rockets into third
- Developers of PCalc, Nomi run afoul of Apple's evolving iOS 8 App Store policies
- Constrained supply keeps iPhone 6 Plus resale prices at 124% of retail price
- FTC files suit against AT&T for 'deceptive & unfair data throttling'