A major security flaw has recently been uncovered inside Apple’s iPhone OS. The flaw would allow unauthorized access to data on the device, even when the passcode was set to “on.” Macworld has received an email from Apple confirming an iPhone update in September that would directly address this flaw.
In an email to MacWorld Apple representative, Jennifer Bowcock, confirmed the following: “The minor iPhone security issue which surfaced this week is fixed in a software update which will be released in September.”
Until the security fix is released in a future software update, Bowcock (yes, Bow-Cock) offered some advice to protect the data on your iPhone from prying eyes. In your iPhone settings, make sure that “double-clicking the home button” takes the user directly to the home screen. Which will be the unlock screen if password protection will be on.
The above image represents the steps necessary to protect your iPhone against the security flaw.
Below, are the steps needed to recreate the security flaw:
1. Set iPhone to use passcode lock, have contacts marked as Favorites with links, phone numbers, addresses, etc in address book entry.
2. Tap “Emergency Call” keypad from passcode entry screen.
3. Double-tap home button.
4. Tap blue arrow next to contact’s name. You now have full access to applications such as Safari, complete Contacts list, SMS, Maps, “full” Phone access, and Mail by accessing various entries on the Favorite’s page, i.e. tapping their home page brings up a full, unrestricted Safari.
