It looks like a possible security flaw has been discovered in Apple iOS 7, that would effectively let anyone block Find My iPhone if your handset was lost or stolen.
The security flaw works by users being able to access the airplane mode on an iPhone with a keypad lock still on, which means that the handset is disconnected from WiFi and cellular, basically blocking Find My iPhone.
How the Security Flaw Works
There are apparently two ways this can be done, one is by swiping up to access the control center and turning airplane mode on, the other is by using Apple’s Siri to turn airplane mode on from the lock screen. This essentially means that even if your iPhone is locked, someone could still disable its connectivity, making it impossible to track via Find My iPhone.
To elaborate, the control center in iOS 7 can be accessed by swiping up from the bottom of the screen, even when the phone is locked. This feature, while convenient for users, poses a significant security risk. Once the control center is accessed, the airplane mode can be toggled on, cutting off all network connections.
Similarly, Siri, Apple’s voice-activated assistant, can be used to enable airplane mode from the lock screen. By simply holding down the home button or using the “Hey Siri” command, a thief could instruct Siri to turn on airplane mode, again severing all connections and rendering Find My iPhone useless.
Implications and Potential Solutions
The implications of this security flaw are quite serious. Find My iPhone is a crucial tool for recovering lost or stolen devices, and its effectiveness is entirely dependent on the device being connected to a network. If a thief can easily disable this connection, the chances of recovering the device diminish significantly.
Apple has always prided itself on the security of its devices, and this flaw undermines that reputation. Users rely on the security features of their iPhones to protect their personal information and to recover their devices if they are lost or stolen. This flaw exposes a vulnerability that could be exploited by anyone with malicious intent.
To mitigate this risk, Apple could consider several potential solutions. One option would be to require the device to be unlocked before airplane mode can be enabled. This would prevent anyone from disabling network connections without first entering the device’s passcode. Another option could be to add an additional layer of security to the control center and Siri, requiring authentication before certain actions can be performed from the lock screen.
In the meantime, users can take some steps to protect themselves. One option is to disable access to the control center from the lock screen. This can be done by going to Settings > Control Center and toggling off “Access on Lock Screen.” Additionally, users can disable Siri access from the lock screen by going to Settings > Siri & Search and toggling off “Allow Siri When Locked.”
Source MacRumors
Latest Geeky Gadgets Deals
Disclosure: Some of our articles include affiliate links. If you buy something through one of these links, Geeky Gadgets may earn an affiliate commission. Learn about our Disclosure Policy.