Tuesday December 06, 2016

Bug Allows Activation Lock Bypass on iPhone, iPad

Is it me? Or does it seem like there has been a lot of these iPhone lockscreen bypass bugs going around lately? Just last month some guy, using a second iPhone, was able to bypass the iPhone lock screen (here).

The problem, as researchers discovered, is that there is no limitation on the number of characters that can be entered into the name, username and password fields. By entering very long strings into these fields, an attacker can trigger a crash that exposes the device’s homescreen. The crash can be triggered using at least two methods. The first involves Apple’s iPad smart cases, which cause the device to wake or sleep when the case is opened or closed.