Apple to release patch to close iOS 7 lock screen exploit

iOS 7 was officially released on Wednesday, and as usual with a new software launch there are people who are looking to find any exploits they can in the latest version of Apple's mobile OS. One person managed to find a way to bypass the iOS 7's lock screen, but Apple says that security hole will be filled up soon.

The exploit was first reported on Forbes, which states that it was discovered by a 36 year old named Jose Rodriguez who has found exploits in previous versions of iOS. As you can see in the video above, iOS 7 lets people access the Control Center even when the lock screen is in place. Once there, users can then open up the alarm clock feature. The next step is to double click on the home button which then brings up a menu that will allow access to the photo app.

The photo app can then be used to retrieve the email or social networking account of the device owner, which of course is a very bad thing indeed. Forbes contacted Apple who stated they are aware of this problem and will "deliver a fix in a future software update."

In the meantime, iOS 7 users can simply stop access to the Control Center from the lock screen by going to "Settings" and then "Control Center". There should be an "Access on Lock Screen" menu choice available and users can turn that feature off.

Source: Forbes

Report a problem with article
Previous Story

Quickoffice for Android and iOS now free in new challenge to Office Mobile

Next Story

One slide shows Steve Ballmer was a pretty good CEO for Microsoft

32 Comments

Commenting is disabled on this article.

This doesn't make sense to me... How long were they testing this for? And How long has it been since its released to the masses? Yeah I'm shocked/confused/amazed too.

It's simple, developers don't waste their time trying every home button/tap/power/whatever permutation they can think of. The masses on the other hand...

When i installed Windows 7 two weeks a go i've since downloaded around 200 updates (115 of them were ready to download and install right after it had installed).. The point is there are bugs, mistakes and changes that need doing in every OS, whether it be mobile or desktop.

It's impossible to test for every eventuality on such a large scale and some stuff will only come to light when more people get to tinker with it.

I don't see why it's such a big deal when it happens on a mobile OS

warwagon said,
and most of those would have installed fast if it wasn't for the fracking dotnet framework.

Very true, and then the framework updates, and then the updates that come through after that. and then for some reason it still wanted to update 3.5 after going through 4. headache

so wait you installed an OS that came out 4 years ago and you are trying to compare installing updates two weeks ago to an OS that came out yesterday?

Circaflex said,
so wait you installed an OS that came out 4 years ago and you are trying to compare installing updates two weeks ago to an OS that came out yesterday?

microsoft released around 9 patches within weeks

Was it not the same with iOS6 i start to think Apple release iOS with a bugg like this on purpose just to be able to kill any Jailbreak at the same time with the patch

Because these things happen. To everyone and on any OS. It is virtually impossible to track and trace any and all bugs. Also there is a lot of people making it a sport to find these things on new releases

there are two ways in producing a system. creating a secure system and adding things into it and creating a system and making it secure. i think these things happen when the security part is added after the system was developed. A lockscreen simply should not allow anything other that it allows.

paulheu said,
Because these things happen. To everyone and on any OS. It is virtually impossible to track and trace any and all bugs. Also there is a lot of people making it a sport to find these things on new releases

Is is true, and I would agree if it were with a different exploit. But this keeps happening and happening all over again....

That is what they get by copying or getting inspired by flat design ui. Too flat and you forgot what is important hehehe. /s or not /s . I am not sure. But it looks ugly as hell in the video. Omg from beautiful icons to child drawn icons. Now to close app, you have to drag the card up... ??? It should have been dragging down to close app.

Jose_49 said,
I wonder... why with every iOS release this thing keeps happening....
I wonder why every new release of Windows still needs updates/patches...

i agree, this happened with iOS6 as well, i think they did it through the emergency call system last time. You have to wonder how these things slip through. I appreciate the nature of software bugs but this is a pretty serious flaw in it's default behaviour. Either patch or disabling the control panel will help.

Jose_49 said,
I wonder... why with every iOS release this thing keeps happening....

Becuase it so easy to overlook something like this in code.. someone hasn't discovered it until iOS has been released. Probably because the person discovered it is not a developer.

dead.cell said,
I've seen enough software releases over the years that I'd have to ask: how would you expect something like this to NOT happen?

By releasing developer and public previews on a regular basis like MS does. Granted, it won't be for everyone as you won't be able to install this like you would on a VM, but the adventurous few would probably have discovered this had they had early access. Now everybody's vulnerable to this until it gets fixed.

I think the member meant the fact that this has happened before. Lockscreen bypass, not needing to release a patch.

68k said,
I wonder why every new release of Windows still needs updates/patches...
Well yeah but Windows has at least got the login/lock screen figured out.

_dandy_ said,
By releasing developer and public previews on a regular basis like MS does.

I can't tell if you're serious or being sarcastic.