• United States
Senior Editor

iOS 7 security update patches lockscreen flaw

Sep 27, 20132 mins
AppleEnterprise ApplicationsiPhone

Tricky maneuver exposed email, popular online accounts

Apple yesterday released an iOS 7 software update that fixes a security flaw that let users bypass the iPhone lockscreen to access a range of onboard information and online accounts.

IOS 7.0.2 seems to be mainly a security patch, but the update screen also says there is a new Greek alphabet keyboard option for entering a passcode.

A day after iOS 7 was released earlier this month, Forbes’ Andy Greenberg reported that a U.S. soldier had somehow uncovered a rather complex series of actions that let him bypass the lockscreen, at least on existing iPhones that updated to the new firmware.

[MORE iOS7: iOS 7 tips and tricks you need to learn]

[NEWS: Quick look: The interesting rise and quick fall of Blackberry]

The actions involved swiping upwards on the lockscreen to bring up the iOS Control Center, then opening the alarm clock app, then holding down the power button to show the “power off” and “cancel” options, then tapping “cancel,” and finally quickly double-clicking the home button to bring up the multitasking screen for various apps.

According to Greenberg’s account, the user could then access the phone’s camera and stored photographs and, more importantly, the ability to share the photos via various associated accounts, and therefore access them: including email, Twitter, Facebook and Flickr.

John Cox covers wireless networking and mobile computing for Network World.



Senior Editor

I cover wireless networking and mobile computing, especially for the enterprise; topics include (and these are specific to wireless/mobile): security, network management, mobile device management, smartphones and tablets, mobile operating systems (iOS, Windows Phone, BlackBerry OS and BlackBerry 10), BYOD (bring your own device), Wi-Fi and wireless LANs (WLANs), mobile carrier services for enterprise/business customers, mobile applications including software development and HTML 5, mobile browsers, etc; primary beat companies are Apple, Microsoft for Windows Phone and tablet/mobile Windows 8, and RIM. Preferred contact mode: email.

More from this author