Το νέο λειτουργικό της Apple για κινητές συσκευές δεν είναι και τόσο ασφαλές όσο ισχυρίζεται η εταιρεία. Όπως φαίνεται το iOS 12 ήρθε με σφάλματα που επιτρέπουν με μια αρκετά περίπλοκη διαδικασία την παράκαμψη του code access.
Bypassing the passcode of course gives access to confidential device data such as photos, the contact list and the address book.
The process of exploiting the security vacuum is rather complicated and requires the use of Siri, VoiceOver and Notes. The method works on iPhone smartphones that have the iOS 12 version installed. These include models supporting biometric Face ID or Touch ID.
To circumvent the Face ID and Touch ID security mechanisms, you need to physically access the device (for a very short time) and also to know the victim's phone number.
To bypass him code to access iOS 12 you need to call up Siri from the lock screen and ask Apple's digital assistant to turn on the VoiceOver service.
Then you should call it iPhone that you want to unlock from another device and at the time of the call, select the reply with message and press the "+" button. If the VoiceOver service is enabled, sending the message from the victim's smartphone will trigger an error in the system, allowing the attacker to access sensitive device data such as photos, contact list and address book. Of course he can see the list of your outgoing calls and have more and detailed ones information for them by clicking on the "i" key.
The vulnerability was discovered by security expert Jose Rodriguez who has published two videos to prove the problem. At this time, vulnerability has not been repaired.
Watch the videos
