One hacker has found a 30-second trick to bypass the iPhone’s lockscreen on iOS 9 to access private information through Siri. Protect yourself with a simple update
A new and easy method to unlock a locked iPhone, iPad or iPod Touch running running Apple’s latest iOS 9 software has been discovered, along anyone to access the device’s photos and contacts in 30 seconds or less.
However, the flaw is only an issue for those who have not updated to iOS 9.0.1, the latest software.
All you need to bypass the device’s passcode is Apple’s personal assistant Siri .
You can do this by entering an incorrect passcode a few times, and then on the final attempt invoke Siri immediately. Ask it for the time, and use the clock app to type in a random word in the “Choose the City” field and share it.
Once you can share through the Message app, you can add a photo from the device which gives you access to the entire photo library on the iOS device. You can browse and view photos individually.
You can also select “Create New Contact” to access the device’s contact list.
Apple fixed the issue in its latest software update, iOS 9.0.1.
This hack comes days after French security firm Zerodium announced a total of $3m bounty rewards for iOS exploits and jailbreaks until October 31 – but the condition is the attacker must be able to remotely compromise a non-jailbroken iOS device.
In the case of this hack, it only works if someone has physical access to your iPhone or iOS device so it doesn’t qualify, but since the hack is relatively easy for novices to pick up, it’s a huge risk to your personal data.
This is the second iOS 9 hack discovered since the software launched – the first allows access via AirDrop .
How to Prevent iOS 9 Hack
Until Apple fixes this issue, iOS 9 users can protect themselves by disabling Siri when the device is locked from Settings > Touch ID & Passcode.
Once disabled, you’ll only be able to use Siri after you have unlocked your iOS device using the passcode or your fingerprint.
This article was written by Madhumita Murgia from The Daily Telegraph and was legally licensed through the NewsCred publisher network.