New dangerous security vulnerabilities appear on iOS 11.2.6, can read messages without unlocking
The MacMagazine page found a vulnerability in iOS that makes Siri easily read the message content without unlocking it.
Basically, iOS 11 users can hide message previews on the lock screen and only when accessing the device can you view the entire message content. But with this vulnerability, just a person asking to read your message by saying 'Hey Siri, read my notifications' (Hey Siri, read my announcement), even if the screen is locked, the virtual assistant still will read the content of those messages.
This security vulnerability affects most iPhone devices running iOS 11.2.6.
Numerous messaging applications including WhatsApp, Signal, Telegram and Skype are affected by this error except iMessage.
Most iPhone devices running iOS 11.2.6 including iPhone X are affected.
Immediately after receiving the information, Apple confirmed that it will patch this security hole in the next update.
While waiting for the vulnerability patch, iOS users can minimize their privacy risks by disabling Siri access on the lock screen by the following way:
Go to Settings (Settings) -> select Siri & Search (Siri & Search) -> turn off the Allow Siri item When Locked (Access when locked) is okay.
See more:
- Errors when upgrading iOS 11.2.6 and how to fix it
- Should the updated iOS 11.2.6 update be launched?
You should read it
- How to turn off Siri on iPhone, iPad
- How to turn off Siri reading messages on AirPod iPhone
- Good features with Siri on Mac
- How to set multiple languages to read messages on Siri
- How to Enable Siri
- The macOS Mail app has security holes related to the Siri virtual assistant application
- How to disable and delete Siri history
- How to change the shortcut to use Siri on macOS Sierra
May be interested
- The last 9 years Firefox has not protected user passwords carefullya network security researcher recently discovered that during the past 9 years, firefox has stored user passwords with an outdated process.
- Detecting vulnerabilities in the QR code reader tool of iOS 11 may trick users into accessing malicious websitesinfosec has just discovered a security flaw in the qr code reader tool of the ios 11 camera app that could trick users into accessing malicious websites they didn't know.
- Many computers in Vietnam have been hijacked due to virus infectionaccording to bkav, hundreds of thousands of computers in vietnam are hijacked due to virus infection.
- CertUtil.exe allows an attacker to download malicious code and bypass antivirus softwareis legitimate software but certutil is used to install malware on the victim's computer.
- Warning: GandCrab extortionist code is attacking Vietnama campaign to distribute blackmail gandcrab attacks many countries around the world, including vietnam, discovered by the vietnam computer emergency response center (vncert, ministry of information and communications).
- Appearing dangerous Android malicious code specializing in stealing chat content on Facebook Messenger, Skype ...a type of malware that has a package name is com.android.boxa that can steal users' private chat data on current messaging applications such as facebook messenger, skype, etc., by experts from the company. network security trustlook detected on android operating system.