Large vulnerabilities in iOS 12 allow hackers to access images and contacts when the iPhone is locked with a call
On iOS 12, there is a vulnerability that allows hackers to access the folder of images and contacts on the locked iPhone.
The amazing thing is that this vulnerability was discovered by a taxi driver while he was waiting for the customer. And Jose Rodriguez, who discovered iOS flaws in the past to Apple fix, shared a method to overcome this rather complex code in a video.
Attack operations
When physically accessing the locked iPhone, the attacker will cause the device to enter sleep mode by asking Siri to activate VoiceOver with the side button (Side Button) and using another device to call the iPhone. When the phone receive screen appears, touch the Message -> button and choose to create a custom message -> touch the plus (+) icon at the top right.
Next, the attacker uses another phone to send a text message or iMessage to the iPhone. When the iPhone receives the message, its screen will be double-tapped and the plus sign below will light up.
After a short period of time, the screen turns white and the message disappears. But an attacker can use VoiceOver's text selection box, which is still accessible to access the Messages interface. Swipe the screen multiple times so that VoiceOver displays Cancel and the initial Messages screen.
When adding a new recipient to the message section and selecting a number from the virtual keyboard, the call history and contact list will appear.
For contacts with the info (i) button displayed, the attacker can even view the contact's information by turning off VoiceOver and touching the (i) button. When performing 3D Touch operation on contacts, call options, messages, Add to Existing Contact (add to current contacts) and Create New Contact (create new contacts) will appear.
An attacker can add profile pictures to contacts by performing complex operations like the one related to the invisible user menu to access Camera Roll and other folders on the locked iPhone. .
The attacker can execute the method over this key on every iPhone, including the newly launched iPhone Xs.
To prevent this vulnerability, users can turn off Siri access from the lock screen by going to Settings -> select Face ID & Passcode (will be Touch ID and Passcode on iPhone with Touch ID support) -> at item " Allow access when locked "Siri off.
See more:
- The time-limited feature on Apple's iOS 12 is hacked by a 7-year-old child
- Errors after upgrading iOS 12 and how to fix it
- 5 security settings to do right on iOS 12
You should read it
- On iOS 12.3 iPhone Lock cannot change the ICCID code directly on the phone and this is a fix
- How to lock Zalo, set a password for Zalo to secure the message
- Easily bypass the iPhone's authenticity thanks to the vulnerability on iOS 11
- Forgot the TV PIN to get back?
- GitHub's machine learning tool can detect vulnerabilities in code
- iPhone Lock suddenly revived after nearly 1 year of 'covering projection'
- Apple fixes the blocking problem that iPhone Lock uses as an international machine without SIM transplant
- 4 very simple ways to scan QR codes on iPhone
May be interested
- How to call a contact on the iPhone main screento quickly call a certain number of contacts from the iphone home screen, you can actually go through the intermediate website.
- How to block annoying calls on iPhone?do not disturb feature on iphone / ipad do not disturb will help us block calls that are not in the contacts list, but still keep the connection when contacting.
- How to export iPhone contacts, sync iPhone contacts to Gmailsyncing iphone contacts to gmail will help you get your contacts back the fastest when you replace the device, or when your iphone is damaged and cannot be restored.
- How to transfer contacts from iPhone to SIMhow to transfer contacts from iphone to sim. unlike other android phones, iphone only allows us to import contacts from sim card and store contacts on the device memory without allowing to save contacts on the sim card. to do this, our iphone
- How to Recover Deleted Contacts on iPhone - If you accidentally delete contacts....if you accidentally delete contacts on your iphone or lose contacts when upgrading the operating system, restoring contacts is also very simple.
- Sync iPhone contacts with Gmailsynchronizing your iphone contacts to gmail is a way that you can store your gmail phone number in case your iphone has a problem but you can keep all contacts on your device. please refer to our article below.
- Instructions for 4 ways to hide contacts on iPhoneto protect your personal information and privacy, you can also hide contacts on iphone whenever you need.
- Revealing how to transfer contacts from iPhone to SIM super quicklyknowing how to transfer contacts from iphone to sim is necessary when users need to change phone devices. the article below will provide detailed instructions on how to copy and transfer contacts from iphone to sim.
- How to transfer, backup phone contacts from iPhone to Gmailsynchronizing your name on your iphone to gmail will allow users to move all contacts from one device to another, or create a backup of contacts if your phone has problems.
- How to copy contacts from iPhone to SIMinstructions for two simple ways to copy iphone nouns to sim simple and fast. click on the article to see the details!