{"id":5042,"date":"2013-03-21T15:51:29","date_gmt":"2013-03-21T14:51:29","guid":{"rendered":"http:\/\/blog.netspark.de\/?p=5042"},"modified":"2018-07-12T15:40:24","modified_gmt":"2018-07-12T13:40:24","slug":"ios-6-1-3-darn-that-security","status":"publish","type":"post","link":"https:\/\/blog.netspark.de\/?p=5042","title":{"rendered":"iOS 6.1.3: Darn that security!"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-Post Icon wp-image-5040\" title=\"ios_6.1.3\" src=\"https:\/\/blog.netspark.de\/wp-content\/uploads\/2013\/03\/ios_6.1.3-64x64.png\" alt=\"\" width=\"64\" height=\"64\" srcset=\"https:\/\/blog.netspark.de\/wp-content\/uploads\/2013\/03\/ios_6.1.3-64x64.png 64w, https:\/\/blog.netspark.de\/wp-content\/uploads\/2013\/03\/ios_6.1.3-150x150.png 150w, https:\/\/blog.netspark.de\/wp-content\/uploads\/2013\/03\/ios_6.1.3.png 273w\" sizes=\"auto, (max-width: 64px) 100vw, 64px\" \/>So iOS 6.1.3 is out for a couple of days and many users have cheered that<br \/>\nthe security flaw where you could bypass the lockscreen was fixed. But<br \/>\nnow there&#8217;s another security flaw which allows access to the iPhone and<br \/>\nit&#8217;s contacts and photos. However it ain&#8217;t as simple as with the old iOS.<\/p>\n<p><!--more-->So while you&#8217;re horrified about this bad news, let me explain why it isn&#8217;t as problematic as it sounds.<\/p>\n<ol>\n<li>To gain access to the iPhone, you must remove the SIM<\/li>\n<li>Voice control for the lockscreen must be activated<\/li>\n<li>The security hole can be easily fixed. one simple setting is necessary!<\/li>\n<\/ol>\n<p>So if you&#8217;re concerned about your iPhone&#8217;s security and your privacy, follwo these steps to fix this little flaw:<\/p>\n<ol>\n<li>Open &#8220;Settings&#8221;<\/li>\n<li>Open &#8220;General&#8221;<\/li>\n<li>Scroll down a bit to the entry &#8220;Passcode Lock&#8221;<\/li>\n<li>Disable &#8220;Voice Dial&#8221; (slide to 0)<\/li>\n<li>You&#8217;re safe now!<\/li>\n<\/ol>\n<p>So this is, how the security flaw can be categorized by iPhone model:<\/p>\n<p>Security flaw severity:<\/p>\n<ul>\n<li> <strong>Unattended bypass: <\/strong><span style=\"color: #000000; background-color: #ff9900;\"><strong>Medium to Easy<\/strong><\/span><\/li>\n<li><strong>Attended bypass: <\/strong><span style=\"background-color: #99cc00; color: #000000;\"><strong>Difficult<\/strong><\/span><\/li>\n<\/ul>\n<p><span style=\"text-decoration: underline;\">Risk assessment:<\/span><\/p>\n<ul>\n<li> <strong>iPhone 4: <\/strong><span style=\"background-color: #ff9900; color: #000000;\"><strong>Medium to High, easy fix with loss of comfort<\/strong><\/span><\/li>\n<li> <strong>iPhone 4S: <\/strong><strong><\/strong><strong><\/strong><span style=\"background-color: #ffff00; color: #000000;\"><strong>Medium, easy fix<\/strong><\/span><\/li>\n<li> <strong>iPhone 5: <\/strong><span style=\"background-color: #ffff00; color: #000000;\"><strong>Medium, easy fix<\/strong><\/span><\/li>\n<\/ul>\n<p>For those who don&#8217;t want to miss the comfort of voice dialling, you&#8217;d better keep an eye on your iPhone.<\/p>\n<p>To see how the bypass works:<br \/>\n<div style=\"width: 640px;\" class=\"wp-video\"><video class=\"wp-video-shortcode\" id=\"video-5042-1\" width=\"640\" height=\"360\" preload=\"metadata\" controls=\"controls\"><source type=\"video\/mp4\" src=\"https:\/\/blog.netspark.de\/wp-content\/uploads\/2013\/03\/Again-on-iOS-6.1.3-Bypass-the-iPhone-passcode-lock..mp4?_=1\" \/><a href=\"https:\/\/blog.netspark.de\/wp-content\/uploads\/2013\/03\/Again-on-iOS-6.1.3-Bypass-the-iPhone-passcode-lock..mp4\">https:\/\/blog.netspark.de\/wp-content\/uploads\/2013\/03\/Again-on-iOS-6.1.3-Bypass-the-iPhone-passcode-lock..mp4<\/a><\/video><\/div><\/p>\n<p>Of course this is annoying for you as there&#8217;s still security issues with the newest iOS release. But to circumvent this security flaw yiu don&#8217;t have to wait for the next iOS update but can fix it at the cost od some usability comfort. The decision is yours what&#8217;s more important: Voice Dialling or security.<\/p>\n<p>I have chosen to be on the safe side and disabled &#8220;Voice Dial&#8221; as I haven&#8217;t used this feature anyways. I guess, most of you aren&#8217;t using it either. So secure your phone using the given instructions. It&#8217;s done in less of a minute!<\/p>\n<p>For iPhone 4S and iPhone 5 it seems as if you can still use Voice Dialling using Siri. When the Slider &#8220;Voice Dial&#8221; in the settings is disabled, Siri should do the thing for you and it&#8217;s not affected by the flaw. So the ony users who could probably miss some comfort in usability might be those who still have an iPhone 4.<\/p>\n<p>Probably Apple is going to fix this with iOS 6.1.4 but I am not sure when the new iOS would be released as 6.1.3 has also made Jailbreaking (untethered) even harder. maybe it&#8217;ll take months until Apple releases a new version of iOS, or a hacking team finds a fast way to jailbreak iOS 6.1.3&#8230;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>So iOS 6.1.3 is out for a couple of days and many users have cheered that the security flaw where you could bypass the lockscreen was fixed. But now there&#8217;s another security flaw which allows access to the iPhone and it&#8217;s contacts and photos. However it ain&#8217;t as simple as with the old iOS.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[55,4,3,150],"tags":[385,2516,1061,2514,2515,2517],"class_list":["post-5042","post","type-post","status-publish","format-standard","hentry","category-computer-2","category-curiosities","category-news","category-video","tag-apple","tag-bypass","tag-control","tag-ios-6-1-3","tag-security-flaw","tag-voice-dial"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/blog.netspark.de\/index.php?rest_route=\/wp\/v2\/posts\/5042","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.netspark.de\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.netspark.de\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.netspark.de\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.netspark.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=5042"}],"version-history":[{"count":0,"href":"https:\/\/blog.netspark.de\/index.php?rest_route=\/wp\/v2\/posts\/5042\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.netspark.de\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=5042"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.netspark.de\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=5042"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.netspark.de\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=5042"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}