VisiCom Services Blog

VisiCom Services has been serving the Rochester Hills area since 1994, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Alert: Siri’s Leaking Secrets - iPhone Lock Screen Vulnerability

b2ap3_thumbnail_ios_vuln_400.jpgApple's iOS 7.1.1. operating system has been affected by a series of bugs throughout this month. The first bug was emails being sent unencrypted, but now a new threat lurks in the shadows - a lock screen flaw that allows hackers to access your contacts list without unlocking the phone.

The flaw was discovered by Egyptian programmer Sherif Hashim, who has posted this video on his Youtube channel in order to show the steps required for doing so:

Hashim first attempts to use Siri's "contacts" command, which fails. Siri denies his request, telling him that he must first enter a password and unlock the phone. However, Hashim tries it again with a different command - "call". Using this command, Hashim was able to access the contacts list when bringing up the "Other..." menu, which appears when searching for a contact with a duplicate name.

It is thought that the flaw can be found in any iOS system running Siri, but it should be known that this flaw can reveal more than phone numbers. Hackers can potentially steal any information found on the contact card. This can reveal the address, phone number, Facebook page, and much more. You could basically be inviting hackers into your social life if they were allowed to get their grubby mitts on your phone.

Thankfully, that is the only way to exploit this vulnerability. The hacker must have physical access to your phone, and they can't access your phone remotely due to Siri being necessary to activate the vulnerability. It is recommended that you deactivate Siri from the lock screen via the Passcode options in the General settings of the device. This will prevent thieves from coaxing information out of Siri with their sugar-coated words.

You can always count on VisiCom Services to deliver the latest news concerning vulnerabilities, patches, and updates directly to you. We'll arm you with knowledge about the latest threats and security breaches. Call VisiCom Services at 248.299.0300 today and find out what we can do for your IT as well!

Comments

 
No comments yet
Already Registered? Login Here
Guest
Wednesday, 16 October 2019
If you'd like to register, please fill in the username, password and name fields.

Sign Up For Our Newsletter

Powered by ChronoForms - ChronoEngine.com

Mobile? Grab this Article!

QR-Code dieser Seite

Recent Comments

Tip of the Week: Tip of the Week: Mirror or Cast Your Android Device’s Screen
14 September 2017
Usually I don't refer spending time like these categories subjects and website but really the blog w...
Tip of the Week: 4 Google Chromecast Features that May Surprise You
05 September 2017
I’m really satisfied to find this site.I need to thank you only for this brilliant read!!I unquestio...
Microsoft OneNote May Be the Best Note-Taking Tool on the Market
27 June 2017
I blog frequently and I really value your substance. The article has really crested my advantage. I ...

Latest Blog Entry

16 October 2019
Visicom Blog
Security
Most people know what a URL is. It’s the address of a website, typically starting with http:// or https://, and it is essentially the location of a web page or application that can be accessed through...

Latest News

Contact Us

Learn more about what VisiCom Services can do for your business.

callphone

Call us today    248.299.0300

2534 S Rochester Road
Rochester Hills, Michigan 48307

#